Understanding the EU Cyber Resilience Act: The Role of SBOMs in Enhancing Cybersecurity

In an era where digital transformation is the norm, cybersecurity has become a paramount concern for organizations and governments worldwide. The European Union (EU) is at the forefront of this endeavor with its Cyber Resilience Act, a landmark legislation designed to bolster the cybersecurity of …

Read More

The Role of SBOMs in an OBOM: Ensuring Compliance and Security in Smart Thermometer Development

In today’s software landscape, compliance with security and transparency mandates is more critical than ever. Executive orders, such as the one issued by the U.S. government in May 2021, emphasize the importance of Software Bill of Materials (SBOMs) for ensuring software security and integrity. While …

Read More

Enhancing Dependency Management with GitHub’s Dependency Graph: An Analysis

Introduction In the evolving landscape of software development, dependency management is a critical component. GitHub’s dependency graph is a feature designed to provide insights into the dependencies and dependents of software projects. Leveraged by tools like Dependabot and SBOM (Software Bill of Materials) generators, this …

Read More

Framing Software Component Transparency: Establishing a Common Software Bill of Materials (SBOM)

As the digital world grows ever more complex, the tools we use to ensure software security and transparency must evolve. The 2nd edition of Framing Software Component Transparency: Establishing a Common Software Bill of Materials (SBOM) has been pivotal in laying down the standards necessary …

Read More

Comprehensive Guide to Generating and Understanding SBOMs with Docker and Django-CMS

It’s fair to say that SBOMs (Software Bill of Materials) is a rapidly emerging field. Many vendors, like Docker and GitHub, now offer tools to automatically generate SBOMs for you. That’s great, but maybe we should first start by asking ourselves what should really go …

Read More

Call for Views on the Code of Practice for Software Vendors: Ensuring Security and Resilience

The UK government has launched a call for views on a new voluntary Code of Practice for Software Vendors. This initiative aims to enhance the security and resilience of software sold to businesses and organizations. The Code, co-designed with industry and academic experts, outlines fundamental …

Read More

Enhancing SBOM Sharing: A Look at Current Practices and the Role of sbomify

Software Bill of Materials (SBOM) sharing is becoming increasingly vital in our interconnected digital ecosystem, where security and transparency play crucial roles. The “SBOM Sharing Primer,” that was published this week by the Cybersecurity and Infrastructure Security Agency (CISA), provides a comprehensive look into the …

Read More

Understanding ISO 42001 and the Integration of SBOMs for Enhanced Operational Resilience

Introduction to ISO 42001 In an era marked by rapid technological advances and complex interdependencies, businesses increasingly prioritize operational resilience to navigate challenges and disruptions. ISO 42001, an emerging standard, provides a framework for establishing, implementing, and maintaining an effective operational resilience management system (ORMS). …

Read More

Harnessing ISO 27001 and SBOMs for Enhanced Information Security Management

Introduction to ISO 27001 As businesses navigate the complex landscape of cyber threats, ISO 27001 emerges as a vital standard for establishing robust information security management systems (ISMS). This international standard, developed by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC), …

Read More