Insights & Research


Coalition Submits Comments to CISA on Software Attestation Form

The Cybersecurity Coalition submitted comments to CISA's second Request for Comment on its Secure Software Development Attestation Common Form.

Open Source Software Security Should Focus on Adoption of Memory Safe Programming Languages

The Cybersecurity Coalition’s comments in response to the Office of the National Cyber Director Request for Information on Open-Source Software Security focuses on the adoption of memory safe programming languages.

NIST CSF 2.0 Includes Positive Changes, Need for Greater Consistency, Practical Guidance

The Cybersecurity Coalition submitted broadly supportive comments in response to the National Institute for Standards and Technology Discussion Draft of the Cybersecurity Framework (CSF) 2.0 Core.

Center for Cybersecurity Policy & Law Staff are Thankful for …

The staff at the Center for Cybersecurity & Law would like to say what they are thankful for this year.

Ninth Circuit Avoids Vulnerability Disclosure Precedent, Following Amicus Brief

The Court of Appeals for the Ninth Circuit affirmed the dismissal of all claims in a case that risked setting a precedent requiring premature vulnerability disclosure, In re Intel Corp. CPU Marketing.

Extensive Artificial Intelligence Executive Order Defines Administrations Plans

The expansive artificial intelligence Executive Order signed by President Biden brings together many actions that the Administration will take over the next year to guide the U.S. government’s use and regulation of the technology.

What We Learned at Singapore International Cyber Week

Alex Botting attended Singapore International Cyber Week and has some key takeaways from the event, including some thoughts on regulatory harmonization, multi-stakeholder collaboration, and ransomware.

Event Recap: CyberNext DC 2023

The Cybersecurity Coalition and the Cyber Threat Alliance hosted their annual day-long CyberNext DC conference focusing on the cybersecurity landscape, policy trends, and initiatives underway to improve the cybersecurity ecosystem.

Joint Letter of Experts on CRA and Vulnerability Disclosure

As concerned cybersecurity experts who have dedicated our lives to improving the security of the online environment, we urge you to reconsider the vulnerability disclosure requirements under the proposed EU Cyber Resilience Act (CRA).

Event Recap - Cyber in War: Lessons from the Russia-Ukraine Conflict

American University’s Washington College of Law held a symposium discussing lessons learned from the Russia-Ukraine conflict and how cyber fits into traditional understanding of international humanitarian law.