- NIST unveils a blockchain-driven method for federal software program asset administration
- The BloSS@M framework goals to spice up software program provide chain safety, reuse and cybersecurity of presidency software program
- NIST seeks public and business enter on the draft framework by way of June 26
The Nationwide Institute of Requirements and Expertise has launched an preliminary public draft of Inside Report 8500A, outlining a blockchain-based framework for managing software assets amongst federal companies. NIST mentioned Tuesday it’s searching for suggestions from authorities companies, business stakeholders, researchers and cybersecurity professionals, with public feedback open by way of June 26.
NIST’s BloSS@M initiative reinforces the necessity for stronger software program safety throughout federal techniques. Be taught extra about cyber modernization and 0 belief on the Potomac Officers Membership’s 2026 Cyber Summit tomorrow, Could 21. Register now.
What Is the BloSS@M Framework?
NIST mentioned Tuesday the preliminary public draft, titled Blockchain-Primarily based Safe Software program Belongings Administration, or BloSS@M, proposes a shared infrastructure to streamline asset acquisition, monitoring and cybersecurity administration. The initiative goals to encourage asset reuse, strengthen provide chain safety and scale back redundant procurement. It was developed consistent with Workplace of Administration and Funds asset administration necessities and NIST cybersecurity tips.
What Capabilities Does the BloSS@M Framework Embody?
The method consists of blockchain-enabled life cycle monitoring designed to keep up tamper-resistant information of software program belongings from acquisition by way of retirement. The draft additionally outlines automated vulnerability administration capabilities tied to the Nationwide Vulnerability Database and machine-processable compliance options utilizing the Open Safety Controls Evaluation Language. In response to the company, the framework is optimized for software program asset administration however may additionally help {hardware} belongings when mixed with extra bodily monitoring mechanisms.
The BloSS@M initiative builds on NIST’s broader efforts to strengthen software program safety throughout the federal authorities. In 2025, the company launched a draft of Particular Publication 1800-44, which outlined really helpful practices for safe software program growth, operations and upkeep all through the software program lifecycle.