Tag
sp-800-218
Safeguard articles tagged "sp-800-218" — guides, analysis, and best practices for software supply chain and application security.
3 articles
FAQ
NIST SSDF FAQ: SP 800-218, the Four Practice Groups, and Attestation
A precise FAQ on the NIST Secure Software Development Framework in 2026 — the four practice groups, the CISA self-attestation form, EO 14028 lineage, the AI augmentation, and the evidence behind it.
Jul 7, 20266 min read
Compliance
The NIST Secure Software Development Framework (SSDF), explained
NIST SP 800-218 is the framework behind federal secure-development attestations. Here's what its four practice groups ask of you and how to produce the evidence.
Jul 5, 20265 min read
Regulatory Compliance
NIST SSDF v1.1: Practical Adoption Notes
NIST SP 800-218 became the de facto baseline for federal software attestation in 2023. Here is how to adopt SSDF v1.1 without drowning in paperwork.
May 15, 20235 min read