Dick Brooks from Business Cyber Guardian discusses the landscape of federal software security requirements, we discuss frameworks like CISA's Software Acquisition Guide, Secure Software Development Framework, and the EU's Cyber Resilience Act. These regulations impact open source projects differently from commercial vendors, Dick helps explain what that means for the vendors as well as open source developers.

The accompaning blog can be found at

https://opensourcesecurity.io/2025/01-government_security_requirements_with_dick_brooks

 

 

CISA Software Acquisition Guide CISA SAG Reader Project NASA SSDF collaboration