all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

CycloneDX upgraded for the evolving software supply chain security era

Add to bookmarks
April 18, 2024, 2:09 p.m. | jpmellojr@gmail.com (John P. Mello Jr.)

ReversingLabs Blog blog.reversinglabs.com




A Cryptographic Bill of Materials (CBOM), a machine-readable approach to managing software bills of materials (SBOMs) with CycloneDX Attestations (CDXA), and the inclusion of data to assess the environmental impact of AI development have been added by the OWASP Foundation to the latest version of its CycloneDX SBOM standard.

ai development appsec & supply chain security bill bills cryptographic cyclonedx data development environmental foundation impact inclusion latest machine materials owasp sbom sboms security software software bill of materials (sbom) software bills of materials software supply chain software supply chain security standard supply supply chain supply chain security version

Visit resource

More from blog.reversinglabs.com / ReversingLabs Blog

When it comes to threat modeling, not all threats are created equal 2 days, 17 hours ago | blog.reversinglabs.com
appsec & supply chain security can career fix +4
CISA's new 'vulnrichment' program aims to bolster the NVD 3 days, 17 hours ago | blog.reversinglabs.com
agency appsec & supply chain security bolster cisa +17
ReversingLabs Search Extension for Splunk Enterprise 4 days, 17 hours ago | blog.reversinglabs.com
apis application blog command +13
What you missed at RSA Conference 2024: Key trends and takeaways 4 days, 17 hours ago | blog.reversinglabs.com
america appsec & supply chain security artificial intelligence (ai) center +20
NSA: State-backed attackers are not after your data — they're targeting CI 1 week, 2 days ago | blog.reversinglabs.com
advanced advanced persistent threat agency apt +22
CI/CD pipelines and the cloud: Are your development secrets at risk? 1 week, 3 days ago | blog.reversinglabs.com
appsec & supply chain security aws azure can +21
Why GenAI fails at full SOC automation 1 week, 4 days ago | blog.reversinglabs.com
ai tools automation autonomous build +23
Verizon 2024 DBIR: Software supply chain risks fuel a data breach epidemic 2 weeks, 2 days ago | blog.reversinglabs.com
alarm appsec & supply chain security breach breaches +25
What’s hot at RSAC 2024: 8 SSCS talks you don’t want to miss 2 weeks, 3 days ago | blog.reversinglabs.com
appsec & supply chain security cisos development don +16

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada
View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA
View on infosec-jobs.com

Sr. Staff Firmware Engineer – Networking & Firewall

@ Axiado | Bengaluru, India
View on infosec-jobs.com

Compliance Architect / Product Security Sr. Engineer/Expert (f/m/d)

@ SAP | Walldorf, DE, 69190
View on infosec-jobs.com

SAP Security Administrator

@ FARO Technologies | EMEA-Portugal
View on infosec-jobs.com