Secure Software Development Framework SSDF
News and Updates
NIST Publishes SP 800-218A
July 26, 2024
Today, NIST is releasing Special Publication (SP) 800-218A, Secure Software Development Practices for Generative AI and Dual-Use Foundation Models: An SSDF Community Profile.
NCCoE Releases Draft Project Description for DevSecOps
July 21, 2022
The National Cybersecurity Center of Excellence (NCCoE) has released a new draft project description, Software Supply Chain and DevOps Security Practices: Implementing a Risk-Based Approach to DevSecOps.
SSDF v1.1: Draft SP 800-218 Available for Comment
September 30, 2021
Draft NIST Special Publication (SP) 800-218, "Secure Software Development Framework (SSDF) Version 1.1: Recommendations for Mitigating the Risk of Software Vulnerabilities," is open for comment through Nov. 5, 2021.
Draft White Paper on SSDF
June 11, 2019
A draft white paper, "Mitigating the Risk of Software Vulnerabilities by Adopting a Secure Software Development Framework (SSDF)," is available for public comment until August 5, 2019.
Project Links
Additional Pages
Created February 25, 2021, Updated July 30, 2024