On May 7, 2025, the UK government released a new voluntary Software Security Code of Practice aimed at establishing a baseline of software security across the market. It comprises 14 principles focused on secure design, build environment security, secure deployment, and effective communication with customers. Inspired by international standards like the US Secure Software Development Framework, it encourages software vendors to adopt these principles but does not impose legal obligations. A self-assessment tool is provided to help vendors evaluate their compliance with the Code, following previous efforts to enhance cyber governance among organizations.
The UK government's Software Security Code of Practice aims to enhance software security by establishing 14 voluntary principles for vendors, aligning with global best practices.
This new Code, effective from May 7, 2025, emphasizes secure design, build environment security, secure deployment, and customer communication as essential for software vendors.
Collection
[
|
...
]