Sec. 882. Balancing security and innovation in software development and acquisition
188 words·~1 min read·
/bill/116/s/4049/es/section-882A research copy — for the controlling text, always check the official state or federal source. Not legal advice.
The Under Secretary of Defense for Acquisition and Sustainment, in coordination with the Chief Information Officer of the Department of Defense, shall develop requirements for inclusion in solicitations for both commercial and developmental solutions, and for the evaluation of bids, of appropriate software security criteria, including— delineation of what processes were or will be used for a secure software development lifecycle, including management of supply chain and third-party software sources and component risks; and an associated vulnerability management plan or tools.
The Under Secretary of Defense for Acquisition and Sustainment, in coordination with the Chief Information Officer of the Department of Defense, shall develop processes for security review of code for the purpose of publication and other procedures necessary to fully implement the pilot program required under section 875 of the National Defense Authorization Act for Fiscal Year 2018 ( Public Law 115–91 ; 10 U.S.C. 2223 note). The requirements and procedures required under subsections
(a)and
(b)shall be developed in conjunction with the Department of Defense's efforts to incorporate input and finalize the procedures described in the Interim Procedures for Operation of the Software Acquisition Pathway.
Connectionstraces to 2
Traces to 2 documents
Citation graph
cites case law
Sec. 882
Balancing security and innovation in software development and acquisition
Cites 2Cited by 0 across 0 sources