“ US chip manufacturers work with a slew of third-party vendors every day , often sharing sensitive data – including chip IP and designs – with those parties ”
VISHAL GAURI CHIEF STRATEGY OFFICER , SECLORE entirely possible that more regulation is on the horizon for chip makers and suppliers specifically ,” says Gauri . “ It could come in many forms , including robust risk reporting , risk quantification , the disclosure of not just material incidents but attack attempts or close calls , third-party auditing , keeping an up-to-date Software Bill of Materials .”
There are a number of things that semiconductor companies can do to prepare for future cybersecurity-related regulation , according to Gauri . The first is ensuring that your cybersecurity hygiene is exemplary .
“ Get the basics right : require password updates , install software updates and patches expeditiously , back up data ,
manufacturingdigital . com 109