Artwork

Content provided by The Daily Scoop Podcast. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by The Daily Scoop Podcast or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://player.fm/legal.
Player FM - Podcast App
Go offline with the Player FM app!

Inside DHS’s work to drive wider use of SBOMs

31:36
 
Share
 

Manage episode 416977950 series 3372158
Content provided by The Daily Scoop Podcast. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by The Daily Scoop Podcast or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://player.fm/legal.
With all of the critical cyberattacks executed through the software supply chain in recent years, you’re sure to have heard about SBOMs, or software bills of materials, which are essentially ingredients lists of the components that make up a piece of software. The Biden administration in its 2021 cybersecurity executive order introduced new guidance for how federal agencies should request SBOMs from vendors when purchasing software so they can better understand what it’s made of and protect against attacks down the supply chain. The Department of Homeland Security, through its Science and Technology Directorate, is advancing federal work on SBOMs, namely through a program led by its Silicon Valley Innovation Program. In partnership with CISA, the Silicon Valley Innovation Program in 2023 awarded funding to a cohort of startups to broadly promote the use of SBOMs by developing two core software modules—a multi-format SBOM translator and a software component identifier translator—to be delivered as open-source libraries which, in turn, will be integrated with their SBOM enabled commercial products. Just recently, that cohort delivered the first of those two tools. Joining the Daily Scoop to discuss the need for SBOMs broadly, the cohort’s progress and what’s next are Melissa Oh, managing director of DHS’s Silicon Valley Innovation Program, and Anil John, SVIP technical manager.
  continue reading

462 episodes

Artwork
iconShare
 
Manage episode 416977950 series 3372158
Content provided by The Daily Scoop Podcast. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by The Daily Scoop Podcast or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://player.fm/legal.
With all of the critical cyberattacks executed through the software supply chain in recent years, you’re sure to have heard about SBOMs, or software bills of materials, which are essentially ingredients lists of the components that make up a piece of software. The Biden administration in its 2021 cybersecurity executive order introduced new guidance for how federal agencies should request SBOMs from vendors when purchasing software so they can better understand what it’s made of and protect against attacks down the supply chain. The Department of Homeland Security, through its Science and Technology Directorate, is advancing federal work on SBOMs, namely through a program led by its Silicon Valley Innovation Program. In partnership with CISA, the Silicon Valley Innovation Program in 2023 awarded funding to a cohort of startups to broadly promote the use of SBOMs by developing two core software modules—a multi-format SBOM translator and a software component identifier translator—to be delivered as open-source libraries which, in turn, will be integrated with their SBOM enabled commercial products. Just recently, that cohort delivered the first of those two tools. Joining the Daily Scoop to discuss the need for SBOMs broadly, the cohort’s progress and what’s next are Melissa Oh, managing director of DHS’s Silicon Valley Innovation Program, and Anil John, SVIP technical manager.
  continue reading

462 episodes

All episodes

×
 
Loading …

Welcome to Player FM!

Player FM is scanning the web for high-quality podcasts for you to enjoy right now. It's the best podcast app and works on Android, iPhone, and the web. Signup to sync subscriptions across devices.

 

Quick Reference Guide