28.Lock Globe

The Biden Administration has extended the deadline for federal agencies to submit documentation proving that the software they use was developed with appropriate security practices, because the form for reporting on such matters isn't complete.

Since coming into office in 2021, the Administration has focused on cybersecurity for the both the government and private sectors, with an emphasis on hardening the software supply chain in the wake of such incidents as the SolarWinds attack.

One of the Administration's tactics was requiring software vendors to attest to their use of federal software development standards defined by the National Institute of Standards and Technology's (NIST's) Secure Software Development Framework [PDF].

The deadline for government agencies to collect attestation certificates from their vendors was September 14. But that dog ain't going to hunt just yet.