Learn how a major corporation successfully implements Software Bill of Materials (SBOM) collection and leverages them for enhanced vulnerability management in this DEF CON conference talk. Discover the practical approaches Schneider Electric used to modify policies and processes for collecting, generating, and storing thousands of SBOMs. Explore real-world applications through case studies of the Log4j and OpenSSL vulnerability events, demonstrating how SBOMs can streamline security response times. Gain valuable insights into overcoming common SBOM implementation challenges, along with key learnings and suggestions for improving your organization's vulnerability management practices through effective SBOM utilization.
The Missing Link: How to Collect and Leverage Software Bill of Materials (SBOMs)
Overview
Syllabus
DEF CON 32 - The Missing Link How we collect and leverage SBOMs - Cassie Crossley
Taught by
DEFCONConference
Related Courses
-
Generating Software Bill of Materials Through Hardware Hacking - A Case Study of Bob the Minion Router
-
The Current State of Software Bill of Materials (SBOMs) for End Users
-
The Evolution of SBOMs in AlmaLinux
-
SBOMs That You Can Trust - The Good, the Bad, and the Ugly
-
Software Bill of Materials (SBOM) in Kubernetes - Best Practices and Approaches
-
Demystifying SBOMs: Strengthening Cybersecurity Defenses
