DooKey
[H]F Junkie
- Joined
- Apr 25, 2001
- Messages
- 14,124
Last year Reuters published a story that described how foreign defense agencies were given access to source code of software that was also sold to the U.S. military. These agencies were looking for vulnerabilities in the software and this knowledge could be used to hack said software. In response to this report, Reuters is reporting that the 2019 defense budget levies a requirement for all software developers to notify the government if they have allowed foreign agencies to review the source code. This is a welcome addition in my opinion and I'm surprised it took this long to create legislation to close this security loophole.
The legislation, part of the Pentagon’s spending bill, was drafted after a Reuters investigation last year found software makers allowed a Russian defense agency to hunt for vulnerabilities in software used by some agencies of the U.S. government, including the Pentagon and intelligence services.
The legislation, part of the Pentagon’s spending bill, was drafted after a Reuters investigation last year found software makers allowed a Russian defense agency to hunt for vulnerabilities in software used by some agencies of the U.S. government, including the Pentagon and intelligence services.