DOD considers creation of a national high-assurance lab for software security

SALT LAKE CITY'Defense Department cybersecurity managers are urging secretary Donald Rumsfeld to establish a high-assurance software lab serving all of DOD. The lab would be virtual, drawing on software certification capabilities scattered across DOD research facilities.

Joe Jarzombek, deputy director for software assurance in DOD's Information Assurance Directorate, said the measure is one response to the fiscal 2004 Defense authorization bill that requires the department to make sure vulnerabilities in commercial software don't compromise military missions. Lawmakers 'are asking how DOD can enhance the acquisition risk management to improve software integrity. DOD is not up to the task of protecting missions from software vulnerabilities,' Jarzombek said last week at the annual Systems and Software Technology Conference.

The proposed lab would create a single executive organization responsible for software integrity and information assurance. Jarzombek said DOD has so many millions of lines of code, it would take years to identify what was developed where.

Featured

  • business meeting (Monkey Business Images/Shutterstock.com)

    Civic tech volunteers help states with legacy systems

    As COVID-19 exposed vulnerabilities in state and local government IT systems, the newly formed U.S. Digital Response stepped in to help. Its successes offer insight into existing barriers and the future of the civic tech movement.

  • data analytics (Shutterstock.com)

    More visible data helps drive DOD decision-making

    CDOs in the Defense Department are opening up their data to take advantage of artificial intelligence and machine learning tools that help surface insights and improve decision-making.

Stay Connected