Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Software Bill of Materials (S-BoM) - Reducing Risk in Third-Party Components

OWASP Foundation via YouTube

Overview

Explore the critical importance of Software Bill of Materials (S-BoM) in managing third-party and open source component risks in this 36-minute conference talk from AppSecCali 2019. Delve into best practices for systematic risk reduction while maintaining the benefits of external components. Learn how to create S-BoM documents in polyglot build environments and leverage OWASP Dependency-Track for automated identification of outdated and vulnerable components. Discover strategies for automating responses to specific security events and gain insights into emerging standards and government initiatives shaping the future of component risk management. Presented by Steve Springett, Senior Security Architect at ServiceNow, this talk offers practical examples and demonstrations for implementing effective risk identification and remediation strategies with minimal effort.

Syllabus

AppSecCali 2019 - BoMs Away - Why Everyone Should Have a BoM - Steve Springett

Taught by

OWASP Foundation

Reviews

Start your review of Software Bill of Materials (S-BoM) - Reducing Risk in Third-Party Components

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.