b'HHow can partnership between the private and public sectors affect DOD cybersecurity and mission? Puckett: Software and data truly run the world. Were working on how we incorporate our ability to see our software bill of materials. Its really critical that, in our partnerships, they have the actual bill of materials when it comes to the software that they deliver to us. Take the 5G physical supply chain. The national security implications when it comes to our ability to have access to commodity compute and storage that does not have influence from adversaries of the United States is a very, very real challenge. The Army has been leaning in heavily to ensure from a compliance and a contractual perspective that were partnering and working with vendors that are able to provide a high level of assurance and confidence, so that we know the origins of our capabilities. We are constantly monitoring what our adversaries are doing with technology and where we could be vulnerable. We are also considering how we need to address those vulnerabilities in the physical supply chain.Open source isFar too often, weve acquired these capabilities that are seen as a black box of technology.From a software fundamentallyperspective, what are the open-source components that youre compiling? There are so many vectors when transformational when itit comes to threats in the software supply chain. Every day you see in the news that people are exploiting open-comes to access to greatsource software. Its a different type of capability and software technologiestechnology that we have to address in a different way. Open source is fundamentally transformational when and ideas. But howit comes to access to great software technologies and ideas. But how we package that up together to deliver we package that upit as a capability and continuously enhance versions of our services is really critical. That becomes a real time together to deliverinformation sharing challenge.it as a capability andIm thankful for the Cyber Executive Order that includes continuously enhancethe software bill of materials. We need to be sharing openly with our industry partners, because we have to versions of our servicesbe mindful of the life cycle of each of the components and capabilities. We have to ensure, from a national is really critical.security perspective, that we arent leaning heavily into a technology that could have immense vulnerability - Paul Puckett implications of influence from another government that perhaps has some adversarial views of the United States and our mission.Securing the Nations Network|Page 8'