Explore the controversial concept of the "software bill of materials" (SBOM) in this 26-minute Black Hat conference talk. Delve into the reasons behind the apathy and hostility towards SBOM in policy circles, despite its simplicity and potential to revolutionize the information security industry. Examine why this common industrial concept has faced resistance when applied to the cybersecurity context. Gain insights into the good processes associated with SBOM implementation, its enterprise value, and its applications in healthcare. Discover the importance of transparency in software development and learn about the working groups dedicated to advancing SBOM adoption. Presented by Allan Friedman, this talk challenges preconceptions and encourages a fresh perspective on the role of SBOM in modern cybersecurity practices.
Overview
Syllabus
Intro
Overview
Why not software
Good process
Enterprise value
Healthcare
Transparency
Working Groups
Taught by
Black Hat