Overview and Introduction Welcome to the fourth article in the “Care and Feeding of SBOMs” series! We started by exploring the strategic importance of SBOMs in “SBOM Adoption at Scale: Burden or Opportunity?”, then delved into practical generation techniques in “How to Build SBOMs at Scale” and tackled the complexities of intake in “How to…
Continue ReadingSBOM Adoption Guide: Part 3 – How to Ingest and Manage SBOMs at Scale
Overview and Introduction Welcome to the third installment of the “Care and Feeding of SBOMs” series! Our first article, SBOM Adoption at Scale: Burden or Opportunity?, outlined the strategic importance of Software Bills of Materials (SBOMs). The second, How to Build SBOMs at Scale, dove into the practicalities of generating accurate SBOMs for your organization’s…
Continue ReadingSBOM Adoption Guide: Part 2 – How to Build SBOMs at Scale
Summary and Background This is the second installment in the Care and Feeding of SBOMs series. The inaugural article, SBOM Adoption at Scale: Burden or Opportunity?, introduced the role and impact that Software Bill of Materials (SBOMs) play across development, enterprise, and regulatory application stakeholders. For a more literal SBOM definition, check out SBOM 101:…
Continue ReadingSBOM Adoption Guide: Part 1 – Burden or Opportunity?
Hello World Welcome to the “SBOM Adoption” series – a practical guide designed to navigate the evolving landscape of Software Bill of Materials (SBOM) adoption. As software supply chains grow more complex and interconnected, understanding what’s inside our software is no longer optional; it’s essential for security, compliance, and trust. Fundamentally, an SBOM provides a…
Continue Reading
DevSecOps Roadmap Part 4: Link SBOMs with External References
This is the fourth and final post in our series on managing SBOMs at scale, where we’ll dive into the intricacies of creating, managing, and ingesting complex dependent SBOMs. If you haven’t read it yet, check out our first three posts “DevSecOps Roadmap: Do I Really Need SBOMs?”, “DevSecOps Roadmap: Generating SBOMs”, and “DevSecOps Roadmap:…
Continue ReadingDevSecOps Roadmap Part 3: Ingest, Manage, and Monitor SBOMs
This is the third post in our series on managing SBOMs at scale, where we’ll dive into how to ingest, manage and monitor SBOMs that you receive. If you haven’t read them yet, check out our first two posts “DevSecOps Roadmap: Do I Really Need SBOMs?” and “DevSecOps Roadmap: Generating SBOMs”. In previous posts we…
Continue ReadingDevSecOps Roadmap Part 2 – Generating SBOMs
This is the second post in our series on managing SBOMs at scale, where we’ll dive into defining goals around SBOM generation in order to determine which type of SBOM to generate, when and how to generate and where you might store SBOMs. If you haven’t read it yet, check out our first post “DevSecOps…
Continue ReadingDevSecOps Roadmap Part 1 – Do I Really Need SBOMs?
This is the first in our series on SBOMs, where we’ll dive into: Much of this series will focus on high level processes and ideal practices, and less so on the actual implementation details, so if you’re looking for those check out the last post in the series here. If you need a refresher on…
Continue Reading
Software Security in AgriTech: Protecting Farms from Cyber Pests
Agriculture has come a long way from dirt, seeds, and hope. Today’s farms are powered by sophisticated agriculture technology, known as AgriTech, like precision farming software, automated irrigation systems, AI-driven crop monitoring, and smart machinery that practically runs itself. But just like real pests threaten crops, digital pests like bad code and unpatched vulnerabilities pose…
Continue Reading
Locking Down LogiTech: How to Secure Supply Chain Software
The logistics industry has come a long way from clipboards and paper trails. Today, supply chains run on software or logistics technology aka LogiTech. Route optimization tools, vehicle telemetry data, warehouse automation, and real-time shipment tracking platforms help logistics companies optimize operations, improve efficiency, and enhance their customer experience. The right tech keeps everything moving…
Continue Reading