CSOonline

NIST provides solid guidance on software supply chain security in DevSecOps

Key recommendations from the NIST’s latest guidance and why they are relevant to modern organizations developing and delivering software. Software supply chain (SSC) attacks continue to be one of the ...
Dark Reading

NIST Offers Improved Software Testing

Combinatorial testing is a method for more effective software testing that the National Institute of Science and Technology (NIST) likes a lot. They ran studies from 1999 to 2004 showing that most ...