Nearly 160 software companies have signed a voluntary pledge to make products more cyber secure as part of a federal push to see major players take more responsibility for protecting their customers.
The Cybersecurity and Infrastructure Security Agency’s (CISA) Secure by Design Pledge is, basically, a promise from companies to try to make “measurable” progress on certain cybersecurity goals. The promise asks them to do so within a year, and to blog or otherwise publicly disclose what they’ve achieved. Or, if things go poorly, they can at least explain to CISA how they tried and what difficulties they hit.
The seven goals in the pledge center on designing products so they’re easier to use securely and harder for hackers to compromise. The goals would also make it easier for people to learn about vulnerabilities affecting those products. The pledge is currently intended for makers of enterprise software.
Read the rest of the story at GovTech.