Slide 23
Slide 23 text
© 2022 https://shift-js.info
ソフトウェアサプライチェーンセキュリティのこれから 22
#1: EO 14028 ― SP 800-218 (NIST SSDF)
Prepare the Organization (PO)
Related: preparation of people, processes, and tools
Protect the Software (PS)
Rleated: artifact integrity
Produce Well-Secured Software (PW)
Related: designing, writing, and testing of software
Respond to Vulnerabilities (RV)
Related: everything after software releases