Explore software supply chain security through this conference talk that examines the evolving landscape of security mechanisms in modern software development. Learn how increasing complexity from multiple suppliers, vendors, and open source software has heightened vulnerability risks and supply chain attacks. Understand the comparative analysis between the established Security Content Automation Protocol (SCAP) and the emerging Software Bill of Materials (SBOM) methodologies for managing security risks. Discover the distinct features of each approach and gain insights into their potential future applications for objectively ensuring security across organizations, systems, products, services, and data in relation to trading partners and stakeholders.
Future Use of SCAP and SBOM for Software Supply Chain Security
Overview
Syllabus
Future Use of SCAP and SBOM for Software Supply... - Yumi Tomita & Atsuya Misaki & Masaki Ishiguro
Taught by
OpenSSF
Related Courses
-
Enterprise Security Leadership: Understanding Supply Chain Security
-
The IT Ops Sessions: Generating a Software Bill of Materials for Docker Images
-
Developer Security Champion: Supply Chain Security
-
Supply Chain Risk Management with OWASP Dependency-Check
-
Secure Software Supply Chain for CSSLP®
-
Supercharge Your Software Supply Chain Security Strategy with Multi-SBOM Integration
