Realities of SBOM - What Is Under the Hood of Software Bill of Materials

Explore the complexities and realities of Software Bill of Materials (SBOM) in this 50-minute conference talk by Hasan Yasar from the Software Engineering Institute at Carnegie Mellon University. Delve into the intricacies beyond simple dependency files, examining interdependencies, integrity with build and runtime environments, and vulnerability monitoring. Gain insights into SBOM as a dynamic process across the Software Development Life Cycle (SDLC) and critically assess its implementation beyond mere file creation. Understand the current trends in application security and the challenges associated with effectively implementing SBOM practices.

Realities of SBOM: What Is Under the Hood of SBOM? - Hasan Yasar, Software Engineering Institute