Object First Commitment to Secure by Design

This document is a technical report detailing Object First's commitment to the Cybersecurity and Infrastructure Security Agency's (CISA) Secure by Design Pledge. The pledge encourages software manufacturers to enhance the security of their products and services through seven specific goals. Object First outlines its actions towards meeting these goals, including the implementation of Multi-Factor Authentication (MFA), the reduction of default passwords, and the continuous release of security patches. The report specifies that Object First has already achieved compliance with several goals, such as enabling MFA configuration and establishing a vulnerability disclosure policy. Additionally, it discusses the company's plans to increase security patch adoption among customers and to publish reports on Common Vulnerabilities and Exposures (CVEs). The document emphasizes the importance of security in software development and the proactive measures taken by Object First to ensure their products are secure by design.