defense
Safeguard articles tagged "defense" — guides, analysis, and best practices for software supply chain and application security.
23 articles
CMMC Level 3 Software Supply Chain Checklist 2026
A senior engineer's CMMC Level 3 checklist focused on software supply chain: SBOM, SC-SR controls, SSP evidence, and the operational gaps most defense contractors still have.
Space Systems Supply Chain Controls 2026
Space systems software supply chain controls are tightening across DoD, NRO, and commercial space. Here is what the new bar looks like and how to clear it.
CMMC Pass-Through: Griffin AI vs Mythos
CMMC 2.0 rollout has made flow-down expectations concrete. AI-for-security tools used by DIB contractors are in scope, and the pass-through story matters.
NATO Software Supply Chain Cooperation Update
NATO allies are converging on shared software supply chain expectations for defense procurement. Here is what the cooperation looks like and how to prepare.
The Supply Chain Attack Kill Chain: A Framework for Defense
We propose a kill chain framework specific to software supply chain attacks, mapping attacker techniques to defensive controls at each stage.
Government AI Procurement Supply Chain Overlap
Government AI procurement rules are colliding with software supply chain requirements. Here is how to navigate the overlap without doubling the workload.
Defense Contractor IL7 Deployment Walkthrough
An anonymized account of how a US defense prime deployed Safeguard in an IL7 classified environment supporting a DoD mission system.
SBOMs for Defense Contractors: Aligning with CMMC and DoD Requirements
Defense contractors face unique SBOM challenges. This guide covers CMMC alignment, DFARS clauses, and practical steps to meet DoD software supply chain requirements.
CMMC 2.0 and Software Supply Chain Security: A Practical Guide
CMMC 2.0 is reshaping defense contracting requirements. Here's how software supply chain security maps to the new maturity model.
Aerospace and Defense Software Supply Chain Security
Aerospace and defense organizations face nation-state threats targeting software supply chains. Here's how to build resilience in high-assurance environments.
ITAR and EAR Export Controls: What Software Teams Need to Know
Export control regulations affect software development more than most teams realize. Here's how ITAR and EAR intersect with software supply chains.