NSA News & Highlights

Results:
Tag: supply chain

NSA joins CISA and others in releasing: A Shared Vision Of Software Bill Of Materials (SBOM) For Cybersecurity

Sept. 3, 2025

NSA, CISA, and Others Release a Shared Vision of Software Bill of Materials (SBOM)

FORT MEADE, Md —

FORT MEADE, Md. - The National Security Agency (NSA) is joining the Cybersecurity and Infrastructure Security Agency (CISA) and others to release the Cybersecurity Information Sheet (CSI), “A Shared Vision of Software Bill of Materials (SBOM) for Cybersecurity,” to inform producers, choosers, and operators of software of the advantages of integrating SBOM generation, analysis, and sharing into existing security processes and practices.

NSA joins CISA and others in releasing "Foundations for OT Cybersecurity: Asset Inventory Guidance for Owners and Operators", a cybersecurity technical report.

Aug. 13, 2025

NSA Joins CISA and Others to Share OT Asset Inventory Guidance

FORT MEADE, Md. - The National Security Agency (NSA) is joining the Cybersecurity and Infrastructure Security Agency (CISA) and others to release the Cybersecurity Technical Report (CTR), “Foundations for OT Cybersecurity: Asset Inventory Guidance for Owners and Operators.”

CSA: 2023 Top Routinely Exploited Vulnerabilities Graphic

Nov. 12, 2024

CISA, NSA, and Partners Issue Annual Report on Top Exploited Vulnerabilities

FORT MEADE, Md. - Malicious cyber actors are increasingly exploiting zero day vulnerabilities to compromise enterprise networks, according to an annual Cybersecurity Advisory (CSA) about the top routinely exploited vulnerabilities co-authored by the Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA), and domestic and foreign partners.
 

Recommendations for Software Bill of Materials (SBOM) Management

Dec. 14, 2023

NSA Releases Recommendations to Mitigate Software Supply Chain Risks

In response to an increase in cyberattacks to supply chains over the past five years, including targeted attacks of software supply chains, the National Security Agency (NSA) is releasing the Cybersecurity Information Sheet (CSI), “Recommendations for Software Bill of Materials (SBOM) Management.” This CSI provides network owners and operators with guidance for incorporating SBOM use to help protect the cybersecurity supply chain, with a focus on and some additional guidance for National Security Systems (NSS).

Procurement and Acceptance Testing Guide for Servers, Laptops, and Desktop Computers. Cybersecurity Information Sheet

Sept. 28, 2023

NSA Releases Guidance on Acceptance Testing for Supply Chain Risk Management

The National Security Agency (NSA) has released the Cybersecurity Information Sheet (CSI) “Procurement and Acceptance Testing Guide for Servers, Laptops, and Desktop Computers” encouraging U.S. Government departments and agencies operating National Security Systems (NSS) to implement a robust supply chain risk management strategy.

Feb. 27, 2019

New Software Helps to Mitigate Supply Chain Management Risk

Article about NSA and the Trusted Computing Group releasing software and standards for a supply chain validation process that can be used for any computing device.