A new Pentagon directive is calling for new safeguards against fake parts and software vulnerabilities in arms and information systems. The mandate, which took effect Nov. 5, is likely to bring new momentum to funding of technology to protect military supply chains.
Signed by Teresa Takai, defense chief information officer, and Frank Kendall, under secretary of Defense for acquisition, technology and logistics, the directive asks for guidance, mechanisms and systems to control the security and configuration of software and hardware. It asks defense to push for new technology for “creating and identifying non-cryptologic software and hardware that is free from exploitable vulnerabilities and malicious intent.”
It calls for heads of defense units to come up with best practices to reduce occurrence of fake or compromised products. The order also asks for a way to give all critical components in systems an item unique identification so fakes can be better weeded out, and requires the implementation of test and evaluation protocols.