“When I worked on a report from the US Cyber Safety Review Board about the Log4j vulnerability, I was stunned to find out that the developer community isn’t necessarily trained on security by design.” These words come from the Acting National Cyber Director of the US Office of the National Cyber Director (ONCD), Kemba Walden on the opening keynote of the second day of the Black Hat USA convention, on August 10, 2023. She announced during her talk that the ONCD and four other US government agencies (CISA, DARPA, the National Science Foundation and the Office of Management and Budget) have launched the same day a request for information on open source software security and memory-safe programming languages.

Source: Infosecurity