ravirockks, 6 months ago to random Latest piece of guidance from the NSA and friends on securing the software supply chain has dropped. This edition is on OSS and SBOMs. https://www.nsa.gov/Press-Room/Press-Releases-Statements/Press-Release-View/Article/3613105/nsa-and-esf-partners-release-recommended-practices-for-managing-open-source-sof/
Latest piece of guidance from the NSA and friends on securing the software supply chain has dropped.
This edition is on OSS and SBOMs. https://www.nsa.gov/Press-Room/Press-Releases-Statements/Press-Release-View/Article/3613105/nsa-and-esf-partners-release-recommended-practices-for-managing-open-source-sof/
kkarhan, 6 months ago @ravirockks I'd be #sus amidst #NSA recommendations, as they've pushed so much #bs and #Govware in the past that they can't be considered a "reliable authority" in that regard... #PRISM #Speck #DUAL_EC_DRBG
@ravirockks I'd be #sus amidst #NSA recommendations, as they've pushed so much #bs and #Govware in the past that they can't be considered a "reliable authority" in that regard...
#PRISM #Speck #DUAL_EC_DRBG