Trump revokes digital identity actions in a new cyber
Although Trump’s new EO eliminates several digital identity guidelines, it maintains other aspects of the Biden administration cybersecurity program.
President Donald Trump has signed a new cybersecurity decree that pursues many of the policies of his predecessors, while also marking key changes in the approach to software security, digital identity and more.
The new decree, “support certain efforts to strengthen cybersecurity in the country”, amend many aspects of A Cyber EO signed by President Joe Biden in January. It also makes modifications to executive orders signed by President Barack Obama to concentrate federal efforts of the application of cybersecurity laws on foreign nationals.
But Trump’s new EO continues the main aspects of Biden directives, including an effort To strengthen the role of the cybersecurity and infrastructure safety agency In the defense of civilian federal networks.
“You have to do more to improve the country’s cybersecurity against these threats,” Trump wrote in the last EO. “I order additional actions to improve the cybersecurity of our country, focusing on the defense of our digital infrastructure, guaranteeing the most vital services and capacities for the digital field and the creation of our ability to respond to key threats.”
The latest executive decree of cybersecurity also maintains federal efforts concerning post-quantity cryptography, the Border Gateway protocol and advanced encryption.
But that eliminates January orders The directive so that agencies require that federal software providers provide proof of monitoring of secure development practices.
Instead, Trump directs the National Institute of Standards and Technology in order to establish a new consortium with the industry “which demonstrates the implementation of the development of software, security and secure operations” based on the development of secure software in NIST.
The order also requires that NIST publishes a preliminary update of the secure development framework by December 1
In the wake of the solarwinds 2020 cyber attack, the Biden administration introduced New requirements for federal suppliers to attest To follow secure development practices. The objective was to ensure that suppliers were following the NIST framework to avoid attacks of software supply chain similar to the future.
In a information sheetThe Trump administration maintains that Biden’s software security requirements constituted “unproven and heavy software accounting processes that have prioritized compliance control lists on authentic security investments”.
Digital identity activities eliminated
Trump’s order also eliminates a section of Biden’s OCE focused on the use of digital identity solutions to combat cybercrime and fraud. The White House affirms that the digital identity guidelines of the Biden Order “have risked generalized abuses by allowing illegal immigrants to access public advantages”.
Defenders of digital identity, however, argue that the United States needs a stronger strategy to ensure online identity to prevent cyber attacks and fraud. But Trump’s OCE does not replace the efforts of the Biden era with new activities.
The Biden EO encouraged agencies to accept digital identity documents to access the programs of benefits which require an identity verification. He ordered agencies to examine whether federal funding for subsidies could help states develop and issue secure mobile driving licenses.
The order has also established federal standards for the use of digital identity documents, including the requirements that these tools will not allow individuals to be monitored or monitoring.
Cybersecurity IA
Trump’s new order also eliminates a section of the Biden directive on “the promotion of security with and in artificial intelligence”. This now struck section had ordered agencies to explore the use of AI to improve the cyber defense of critical infrastructure and establish a program to use advanced AI models for cyber defense, while looking for secure AI systems.
Instead, Trump’s new prescription offers a much brighter IA section which orders the agencies of “ensuring that the existing data sets for cyber defense research have been made accessible to the wider university research community (safe or publicly) to the extent possible possible, in consideration of commercial confidentiality and national security.”
Guide updates
Trump’s order also directs the management and budget office to update Circular A-130 – “Information management as a strategic resource” – over the next three years. The update must “resolve critical risks and adapt modern practices and architectures in federal information systems and networks”, indicates the order.
He also orders the agencies within one year to establish a pilot program exploring a “rules approach as a code for versions readable by policy and guidance machine that the OMB, NIST and CISA publish and manage concerning cybersecurity”.
Copyright © 2025 Federal News Network. All rights reserved. This website is not intended for users located in the European Economic Area.
