Software Bill of Materials: Visualizing the Unseen

Abstract

An SBOM is a formal record containing the details and supply chain relationships of various components used in building software. In addition to establishing these minimum elements, this report defines the scope of how to think about minimum elements, describes SBOM use cases for greater transparency in the software supply chain, and lays out options for future evolution.1 SBOMs are mandated under a federal directive EO 14028, Executive Order on Improving the Nation's Cybersecurity.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Apr 05, 2023
Accession Number
AD1199683

Entities

People

  • Michael Bandor

Organizations

  • Carnegie Mellon University

Tags

Communities of Interest

  • Autonomy

DTIC Thesaurus Topics

  • Artificial Intelligence
  • Case Studies
  • Cybersecurity
  • Data Rights
  • Engineering
  • Failure Mode And Effect Analysis
  • Homeland Security
  • Knowledge Management
  • Lessons Learned
  • Machine Learning
  • Materials
  • Software Development
  • Supply Chain
  • Time Intervals
  • United States
  • Universities
  • Vulnerability

Fields of Study

  • Computer science

Readers

  • Industrial Economics
  • Software Engineering.
  • Strategic Security Studies

Technology Areas

  • Cyber