The Office of Management and Budget (OMB) mandates that all government agencies report on "Enhancing the Security of the Software Supply Chain through Secure Software Development Practices," as amended by OMB Memorandum M-23-16, "Update to Memorandum M-22-18, Enhancing the Security of the Software Supply Chain through Secure Software Development Practices." This requirement authorizes the collection of specified information. The self-attestation form outlines the essential software development standards that a software producer must fulfill and confirm compliance with. Federal agencies can only use software that meets the requirements outlined in M-22-18 and M-23-16. Software producers utilize this form to certify that their software adheres to specified secure software development methods.
EO: EO 14028 Name/Subject of EO: Improving the Nation’s Cybersecurity
$0
Peter Robbins 202 864-8589 peter.robbins@frtib.gov
To adhere to the requirements outlined in M-22-18, as per Executive Order 14028 and NIST Guidance, FRTIB is obligated to ensure that the software utilized complies with secure software development practices.