Re: [spdx-tech] Significant announcement from DOD regarding SBOM

Tue, 03 Oct 2023 08:36:13 -0700

Hi Dick,

Little clarification - this is a proposed FAR change coming from DoD, GSA, and NASA.

If implemented after the public comment period this would be in affect for all government procurements in both the military and civilian sides of government.

Comments due 4 December 2023 here.

Bob

Robert (Bob) Martin
Sr. Software and Supply Chain Assurance Principal Eng.
Cross Cutting Solutions and Innovation Dept
Cyber Solutions Innovation Center
MITRE Labs
MITRE Corporation
781-271-3001o
781-424-4095c
On 10/3/23 11:10 AM, Dick Brooks wrote:
FYI: Today, DoD issued guidance regarding SBOM requirements and vulnerability reporting: https: //www. federalregister. gov/documents/2023/10/03/2023-21328/federal-acquisition-regulation-cyber-threat-and-incident-reporting-and-information-sharing

FYI: Today, DoD issued guidance regarding SBOM requirements and vulnerability reporting:

https://www.federalregister.gov/documents/2023/10/03/2023-21328/federal-acquisition-regulation-cyber-threat-and-incident-reporting-and-information-sharing

 

 

Thanks,

 

Dick Brooks

 

Active Member of the CISA Critical Manufacturing Sector,

Sector Coordinating Council – A Public-Private Partnership

 

Never trust software, always verify and report!

http://www.reliableenergyanalytics.com

Email: [email protected]

Tel: +1 978-696-1788

 

 





_._,_._,_





Links:



  
    You receive all messages sent to this group.
  
  




View/Reply Online (#5368) |


  Reply To Sender
  
	
    	| Reply To Group
	
  

|

  Mute This Topic


| New Topic







Your Subscription |
Contact Group Owner |

Unsubscribe

 [[email protected]]


_._,_._,_

Reply via email to