secure by design Archives

Food and drink abstract with many Artificial flavors, Food additives, Food coloring, Preservatives, and artificial sweeteners. Hailshadow, iStock / Getty Images Plus

CISA guide seeks a unified approach to software ‘ingredients lists’

Produced with other world cyber agencies, the document is a “shared vision” of SBOMs, or software bill of materials.

2 hours ago By Tim Starks

President Donald Trump holds up an executive order on creating a White House 2028 Olympics task force after signing it in the South Court Auditorium of the White House on Aug. 5, 2025. (Photo by Brendan SMIALOWSKI / AFP)

The overlooked changes that two Trump executive orders could bring to cybersecurity

Good, bad, puzzling — a March order and June order could have bigger ripples than realized when the president signed them.

Aug 13, 2025 By Tim Starks

President Donald Trump answers questions while departing the White House on July 11, 2025 in Washington, D.C. (Photo by Win McNamee/Getty Images)

Trump AI plan pushes critical infrastructure to use AI for cyber defense

It also builds on previous efforts to promote “secure by design” principles in AI systems and tools.

Jul 23, 2025 By Derek B. Johnson

U.S. President Donald Trump, joined by Republican lawmakers, signs the One, Big Beautiful Bill Act into law during an Independence Day military family picnic on the South Lawn of the White House on July 4, 2025. (Photo by Samuel Corum/Getty Images)

GOP domestic policy bill includes money for military cyber

Democrats have critiqued the bill for not protecting funds for the Cybersecurity and Infrastructure Security Agency.

Jul 7, 2025 By Tim Starks

The U.S. Department of Homeland Security seal. (Photo by Mark Makela/Getty Images)

Multiple top CISA officials behind ‘Secure by Design’ resign

In a statement to CyberScoop, acting Director Bridget Bean said that encouraging the private sector to build more secure products will continue to be a priority at…

Apr 21, 2025 By Derek B. Johnson

Previously deemed unfeasible due to incompatibilities between Cassandra’s upstream code and FIPS-approved libraries, the development responds to persistent customer demand for compliance-ready solutions. (Getty Images)

Chainguard’s FIPS-compliant Cassandra addresses security demand of federal and regulated markets

The new offering paves the way for orgs to use the widely popular open-source software with their highly sensitive data.

Mar 5, 2025 By Greg Otto

Projecting the next decade of software supply chain security

A 2035 vision includes a shift that combines security and innovation.

Feb 10, 2025 By Dan Lorenc

Jack Cable, who is departing his role as CISA’s senior technical adviser, speaks at an event. (Photo courtesy of Jack Cable)

A CISA secure-by-design guru makes the case for the future of the initiative

The initiative had led to tangible changes, Jack Cable said upon his exit from the agency as senior technical adviser.

Jan 16, 2025 By Tim Starks

Playbook advises federal grant managers how to build cybersecurity into their programs

The guidance comes from the Office of the Director of National Cybersecurity and the Cybersecurity and Infrastructure Security Agency.

Dec 17, 2024 By Tim Starks

Rep. Andrew Garbarino, R-N.Y., chair of the House Homeland Security Subcommittee on Cybersecurity and Infrastructure Protection, holds a hearing on CISA’s secure-by-design initiative on Dec. 5, 2024, in Washington, D.C. (Screenshot)

Industry leaders on CISA’s secure-by-design pledge: A great program with some issues

House lawmakers and witnesses weighed in on secure-by-design incentives, subpar developers and the initiative’s future under new CISA leadership.

Dec 5, 2024 By Matt Bracken