US agencies publish guide about securing software supply chain for customers

In the USA, the Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA), and the Office of the Director of National Intelligence (ODNI) issued the third of a three-part series on securing the software supply chain – Securing Software Supply Chain Series – Recommended Practices Guide for Customers. This publication follows the previously published guides for developers and suppliers. The guide includes recommended practices for software customers to guarantee their purchased software’s integrity and security.