Allan Friedman is the Director of Cybersecurity Initiatives of NTIA (National Telecommunication and Information Administration) US Dept of Commerce. The problem: unknown software supply chain. Following a newly identified software risk, very few firms can answer the simple question: Am I affected? An overview of the solution: what is an SBOM, and how is it used. Where we are: some background on why the govt is doing this, the results thus far, and where we are going next. Potential to discuss regulation, govt policy, etc.
Visit https://www.securityweekly.com/asw for all the latest episodes!
To learn more about our sponsors visit: The Security Weekly Sponsor’s Page
Software Bill of Materials (SBOM)
- Published documents on the basics of SBOM: https://www.ntia.gov/SBOM
- More about how to get involved: https://www.ntia.doc.gov/SoftwareTransparency