self attestation
Safeguard articles tagged "self attestation" — guides, analysis, and best practices for software supply chain and application security.
4 articles
EO 14028 producer self-attestation: where the CISA Form sits in 2026
The CISA Secure Software Development Attestation Form went live in March 2024. Two years and several revisions later, here is what producers actually have to attest, and where the common gotchas are.
What is Executive Order 14028
EO 14028 forced federal software vendors to prove what's in their code. Here's what it requires, who it binds, and what's changed since 2021.
Public-Sector Software Procurement Requirements
A tour through the attestations, self-certifications, and supply chain obligations that now shape how governments buy software.
CISA Self-Attestation Form: What Software Producers Need to Know
OMB M-22-18 requires software producers selling to the federal government to self-attest to secure development practices. Here's what's required.