Breaking trust: Shades of crisis across an insecure software supply chain
By
Dr. Trey Herr, William Loomis, Stewart Scott, June Lee
Software supply chain security remains an under-appreciated domain of national security policymaking. Working to improve the security of software supporting private sector enterprise as well as sensitive Defense and Intelligence organizations requires more coherent policy response together industry and open source communities.