Letter to HHS Requesting Development of Software Bill of Materials for Health Care Technologies


Excerpt: “The Task Force’s report, post-outbreak analyses of WannaCry and NotPetya, and Committee staff work on health care issues all demonstrate the risks presented by the continued prevalence of insecure and legacy components in health care technologies. This situation is untenable and elevates the need to explore the Task Force’s recommendation on the creation and deployment of BOMs. While the implementation and use of BOMs will not completely protect the health care sector from cyber threats, it is an important, common-sense step towards improving the cybersecurity of the sector overall.”

To read a copy of the letter, click here.

To read a copy of HHS’s response, click here.