Secure Software Development Framework SSDF
News and Updates
NCCoE Releases Draft Project Description for DevSecOps
July 21, 2022
The National Cybersecurity Center of Excellence (NCCoE) has released a new draft project description, Software Supply Chain and DevOps Security Practices: Implementing a Risk-Based Approach to DevSecOps.
SSDF v1.1: Draft SP 800-218 Available for Comment
September 30, 2021
Draft NIST Special Publication (SP) 800-218, "Secure Software Development Framework (SSDF) Version 1.1: Recommendations for Mitigating the Risk of Software Vulnerabilities," is open for comment through Nov. 5, 2021.
Draft White Paper on SSDF
June 11, 2019
A draft white paper, "Mitigating the Risk of Software Vulnerabilities by Adopting a Secure Software Development Framework (SSDF)," is available for public comment until August 5, 2019.
Created February 25, 2021, Updated January 10, 2023