Understanding SBOMs: A Practical Guide to Implementing NIST/CISA's Software Bill of Materials (SBOM) Requirements
As a result of the May 2021 Executive Order on Improving the Nation’s Cybersecurity (EO #14028), the US Department of Commerce published details for the “minimum elements” of a Software Bill of Materials (SBOM). An SBOM is a formal record containing the details and supply chain relationships of components used in building software and has been hailed as the first line of defense against software supply chain attacks.
This webinar provides an overview of the executive order including what constitutes an SBOM, and their intended purpose, usage and shortcomings in software supply chain security. We will then explore how a pipeline bill of materials (PBOM) can be used to expand upon the foundation provided by SBOMs to give you more visibility and control over all the components that make up your software supply chain.
This webinar covers:
- What an SBOM is and what its capabilities are
- What guidelines NIST and the Whitehouse EO suggest regarding SBOMs
- Where SBOMs fall short and leave security gaps
- How to broaden and improve your software supply chain security with a PBOM
Cycode Wins the Triple Crown of Security Awards
Learn more about the common misconceptions of securing software supply chains, and how to overcome them, by requesting a demo.