all InfoSec news
Risk modeling initiative aims to expose the 'hiddenness of knowledge' in the supply chain
Malware Analysis, News and Indicators - Latest topics malware.news
As Google's collaborative project known as the Graph for Understanding Artifact Composition (GUAC) starts to gain steam, the firm is bolstering its investment in dependency mapping by supporting a new project on top of GUAC that is geared toward risk modeling.
Dubbed GUAC-ALYTICs, the new project aims to develop an algorithmic engine that will make it easier for software maintainers and practitioners to predict supply chain dependency risks — without full visibility into downstream connections or proprietary code.
Sabine …
dependency google guac initiative investment knowledge mapping modeling project risk steam supply supply chain understanding