Sen. Jeanne Shaheen (D-New Hampshire) has asked the Defense Department to provide information on how it handles security risks associated with DoD’s software platforms that have undergone foreign government reviews, Reuters reported Wednesday.

Shaheen’s Tuesday letter to Defense Secretary James Mattis came weeks after the news agency reported earlier this month that a Russian defense agency was permitted to assess the source code of Hewlett Packard Enterprise’s ArcSight software.

ArcSight is a cyber defense tool that DoD uses to safeguard its computer systems from cyber threats.

“I understand that individual businesses must make decisions weighing the risk of intellectual property disclosure against the opportunity of accessing significant overseas markets,” wrote Shaheen, a Senate Armed Services Committee member.

“However, when such products undergird [Defense Department] cyber defenses, our national security may be at stake in these decisions,” she added.

A spokeswoman for HPE said such source code reviews have occurred in Russia for years and that the company ensures the security of its products through close monitoring of such reviews and prohibiting any source code from leaving the premises, according to the Oct. 2 report.

HPE sold ArcSight to U.K.-based software firm Micro Focus International last year.

The U.S. Air Force Research Laboratory and Harvard University’s Wyss Institute for Biologically Inspired Engineering have jointly developed a new three-dimensional printing process to manufacture stretchable and flexible electronics.

Hybrid 3D printing is an additive manufacturing process that combines conductive material with material substrate to form stretchable and wearable electronics, the Air Force said Tuesday.

In a recent demonstration, 3D printed flexible silver-infused thermoplastic polyurethane was integrated with microcontroller chips and LED lights.

The resulting devices were able to function while enduring an above 30 percent stretch from its base size.

Dan Berrigan, a scientist at the AFRL Materials and Manufacturing Directorate, stated that the newly developed process holds potential for Air Force applications such as movement, temperature, fatigue and hydration monitoring from skin-worn electronics.

Succeeding phases of the development will focus on making a stretchable power source for the devices.

The Defense Department plans to roll out a new process for its acquisition of mobile application security services based on the Federal Risk and Authorization Management Program model, Federal News Radio reported Monday.

John Zangardi, acting DoD chief information officer, signed the mobile application security requirements memorandum which was designed to establish a baseline standard for applications as well as advocate reciprocity throughout the military.

“The [National Information Assurance Partnership] developed the baseline set of security requirements for organizations engaged in locally evaluating mobile applications … These requirements are achievable, testable, and repeatable and provide a basis for technical evaluation and risk determination by Authorization Officials,” said Zangardi in the memo.

Zangardi directed DoD agencies and service branches to utilize the “Requirements for Vetting Mobile Applications from the Protection Profile for Application Software” NIAP profile and tasked the Defense Information Systems Agency to create a portal for the new process within the next 90 days.

DoD service branches and agencies will also assess applications from the mobile application portal and other commercial stores prior to its development and acquisition to determine potential security threats.

The Office of the National Coordinator for Health Information Technology has introduced a prize competition that aims to determine potential vulnerabilities from the implementation of open source Fast Healthcare Interoperability Resources servers.

Steven Posnack, director of ONC’s standards and technology office, wrote in a blog post published Oct. 10 the agency seeks participants who can leverage current industry standards and best practices to create FHIR-compliant servers as part of the Secure API Server Showdown Challenge.

ONC plans to award a total of $50,000 in prizes to winners of the challenge that will the Server Build Stage and the Vulnerability Discovery Stage.

Phase 1 will involve the development and submission of FHIR servers for evaluation based on a technical judging criteria and the participants’ availability to take part in Stage 2.

The second stage of the challenge will comprise teams for the Discovery Track that will work to determine potential vulnerabilities from FHIR servers and the Server Track that will review submissions from the Discovery teams.