NIST SSDF: PO — Roles & Responsibilities

warning

ssdf_po_roles_defined

secure-development conformance pure_temporal secure-developmentnistssdfsupply-chainporag-amber

Roles and responsibilities for the secure development process are defined (PO.2).

Formula

G(Release → P(security_roles_defined))

SSDF PO.2: implement roles and responsibilities, and provide role-based training, for the SDLC.

passes the practice's evidence is present

fails the required secure-development step is absent

ponens policies add ssdf_po_roles_defined --into ./trace.json
ponens trace check ./trace.json