At SecurityWeek’s 2021 CISO Forum, a high-powered panel of experts discussed specific ways an SBOM can improve supply chain security and where expectations may be overblown. The conversation covers edge cases that are turning out to be more troublesome than anticipated and what might come next after SBOM and where there are opportunities for innovation (e.g., new tooling or standards) on top of SBOMs.
• Allan Friedman, SBOM Champion at U.S. Cybersecurity and Infrastructure Security Agency (CISA)
• Sounil Yu, CISO at JupiterOne
• Steve Springett, Chair at CycloneDX Core Working Group.