IT.COM

security Supply Chain Security: A New Kind of Halting Problem

Spaceship Spaceship
Watch
Future Sensors

Future Sensors

78% of human domainers will be replaced by robotsTop Member
VIP
Impact
23,239

Webcast: Supply Chain Security: A New Kind of Halting Problem

Today, the core of cybersecurity lies in a trusted and verified supply chain. I’ll briefly introduce the challenge of modern supply chain security, including the foundry problem. I'll categorize software and hardware supply chain compromises based on component, level and adversary motivation. I'll review recent initiatives and strategies that aim to address malicious supply chain compromise.

RSA Conference webcast, 12 January 2021

Presenter: Sarah Freeman, Industrial Control Systems (ICS) Cyber Security Analyst, Idaho National Laboratory.

 
Click to expand...
Reply
0
0 Like
0 Thanks
•••
The views expressed on this page by users and staff are their own, not those of NamePros.
Sort by date Sort by points

Information and Communications Technology Supply Chain Risk Management (CISA.gov)

Information and communications technology (ICT) is integral for the daily operations and functionality of U.S. critical infrastructure. If vulnerabilities in the ICT supply chain—composed of hardware, software, and managed services from third-party vendors, suppliers, service providers, and contractors—are exploited, the consequences can affect all users of that technology or service.

CISA, through the National Risk Management Center (NRMC), is committed to working with government and industry partners to ensure that supply chain risk management (SCRM) is an integrated component of security and resilience planning for the Nation’s infrastructure.

Read more:

https://www.cisa.gov/supply-chain
 
Last edited:
Click to expand...
Reply
0
0 Like
0 Thanks
•••

How InfoSec Should Use the Minimum Viable Secure Product Checklist

A team of tech companies including Google, Salesforce, Slack, and Okta recently released the Minimum Viable Secure Product (MVSP) checklist, a vendor-neutral security baseline listing minimum acceptable security requirements for B2B software and business process outsourcing suppliers.

The news arrives at a time when many organizations are growing concerned about the security of third-party tools and processes they use. After attacks such as those involving SolarWinds and Kaseya, businesses are increasingly aware of how third-party tools and services could serve as a gateway to attackers.

Read more:

https://www.darkreading.com/operati...e-the-minimum-viable-secure-product-checklist
 
Click to expand...
Reply
0
0 Like
0 Thanks
•••
Log in or sign up to reply here.

Similar threads

Lox
security CSC Webinar Domain Security Report - Forbes Global 2000
0 replies
667 views
Lox
Lox
NickB
information 5000 (most?) popular English word list
19 replies
5K views
DmytroK.
DmytroK.
alonn
(abacusapes.com) A very big list of names - .com that will be expired tomorrow
4 replies
4K views
alonn
alonn

We're social

Escrow.com

New posts

Auction activity

Domain Recover

What non .com extensions have you sold in 2024?

Polls of interest

Popular this week

Community favorite

Popular this month

Blog favorites

  • The sidebar remains visible by scrolling at a speed relative to the page’s height.
Back