Open-source software is ever vulnerable to malicious actors, but software bills of material can help mitigate the threat. NSA guidance sets a solid foundation for managing the ecosystem. Software ...

With Executive Order 14028, a large regulatory push toward mandating the production of a software bill of materials (SBOM) began. As this new buzzword spreads, you'd think it was a miracle cure for ...

The push to create more detailed, reliable, and mature BOMs with sufficient detail and depth to counter supply chain attacks continues to advance with the latest OWASP model. The exponential growth of ...

An agent of the operational center of the French National Cybersecurity Agency (ANSSI) checks datas on a computer in Paris on November 24, 2022. (Photo by Thomas SAMSON / AFP). There are few things ...

"SBOM"—or "software bill of materials"—is one of the hottest new buzzwords in cybersecurity today, and for good reason. Each day brings new headlines about the latest supply chain attack, followed by ...

Conal Gallagher is the CIO at both Flexera and its division Revenera, where he manages IT and information security programs. A perfect storm is brewing for software supply chain security. Increasingly ...

Today, software security problems go beyond just having insecure code or missing patches. Today's risks often come from what software is made of and how important security features like cryptography ...

What a difference two years makes. Around this time in 2021, the term "SBOM" — which stands for software bill of materials — was hardly common, even in security conversations. Now, we see it discussed ...

Want smarter insights in your inbox? Sign up for our weekly newsletters to get only what matters to enterprise AI, data, and security leaders. Subscribe Now In the continuously rippling wake of ...

SBOMs provide visibility into software supply chain risks and vulnerabilities SBOMs can be generated automatically, including for C/C++ SBOMs are useful for both compliance and security SBOMs improve ...