Trump Administration Rescinds Biden-Era Software Security Directive for Federal Agencies

The Trump administration has revoked a Biden-era directive that required federal agencies to obtain compliance attestations from software vendors with the Secure Software Development Framework (SSDF) established by NIST. This measure initially applied to software used by U.S. government entities. No new obligations have been introduced to replace this requirement. The long-term consequences of this decision remain uncertain. The Software Bill of Materials (SBOM), which was linked to this directive, is no longer required under this framework.