The publication of the US government’s cybersecurity strategy in March 2023, marked the start of a step change in the global cyber and software developer landscape.
The strategy itself introduced ground-breaking new proposals, including a plan to introduce liability on manufacturers who build software that is insecure and has been followed by a raft of new proposals and international agreements that seek to make software more secure.
Central to this new regulatory environment is an emphasis on making software that is “secure-by-design” where the security of the design is analyzed and the appropriate security plans are . . .