Start Free Trial
Home/Regulations/EO 14028 — Improving the Nation's Cybersecurity — Regulatory Reference
Regulatory Reference
Public Sector Federal (US) high

EO 14028 — Improving the Nation's Cybersecurity — Regulatory Reference

Zero trust, incident reporting for federal contractors — AutoPIL agent registry and key scoping implement zero-trust data access.

Key Provisions
  • Zero Trust Architecture (NIST SP 800-207) adoption
  • SBOM requirements and software supply chain security
  • Incident reporting and information sharing expectations
  • Subsequent guidance: OMB M-22-09 and CISA Zero Trust Maturity Model
How AutoPIL Enforces It
  • Pre-retrieval enforcement is zero-trust applied to AI agents — no implicit trust based on network location
  • Agent registry implements identity-centric access policy
  • Audit chain supports incident response and lessons learned
Policy EngineAudit LogSensitivity LabelsAgent RegistryAlert RulesKey Scoping
AutoPIL Policy IDs
PS-EO14028-ZT-001Zero-Trust AI Agent Access
PS-EO14028-IR-001Incident Response Evidence Chain
Official Sources
https://www.whitehouse.gov/briefing-room/presidential-actions/2021/05/12/executive-order-on-improving-the-nations-cybersecurity/https://www.cisa.gov/zero-trust-maturity-model

This page is a working reference and not a substitute for qualified legal review. Verify against official sources before use in compliance artifacts.

AutoPIL Governance Platform

Enforce this regulation today

AutoPIL intercepts every AI agent data access call, enforces your policy, and writes a tamper-evident audit record — before sensitive data enters the agent context window.

Start Free Trial View All Industries