All you need to know about NIST’s SSDF

Don’t be late to the game: With the new OMB memo issued in Sep 2022, the direction is clear

It’s now clear that the SSDF framework, which started as a recommendation, is slowly turning into a directive and will have a real impact on the ability to conduct business in the US (and globally). 

The direction is very clear with the new OMB memo issued in Sep 2022.

With this guide, you will gain a deeper understanding of why the SSDF can no longer be ignored.

This guide covers:

  • The growth in the software supply chain attacks
  • A breakdown of NIST’s SSDF and the four main areas it covers
  • A review of SSDF development and its quick transition from recommendation to a directive
  • The benefits of another supply chain security framework, SLSA
  • The building blocks required for successful software supply chain security
  • The use of continuous assurance and the tracking of every process across the SDLC

Download the guide to make sure you’re not too late to the game.

All Resources

Last Resources

What must you do to secure your SSC in the US vs the EU?
It seems like everyone is concerned about software supply chain security these days. There has been an increased focus on particularly, how to get a…

Fighting software vulnerabilities with software bill of materials
In this episode, Barak Brudo explains what a software bill of material is and why they are important for security and to reduce vulnerabilities.

What’s New in the World of SBOMs – OpneSSF Day North America 2023
There’s so much more to an SBOM than just being a list of software components.  This panel that our own Guy Chernobrov participated in, covers…

Get the Guide

To view the Guide, please complete the form

Guide cover