CISA releases user guide to assist with uploading secure software self-attestation letters in online repository

The Cybersecurity and Infrastructure Security Agency is providing guidance to users on how they can create an account and upload information on their compliance with secure software development practices in an online repository that will include self-attestation letters and corresponding artifacts.

CISA and the Office of Management and Budget released the final common form on March 11 for software producers to self-attest their compliance with practices derived from the NIST Secure Software Development Framework. The user guide is...