The Resource Introduction to Software Bill of Materials, Deza, Alfredo

Introduction to Software Bill of Materials, Deza, Alfredo

Label
Introduction to Software Bill of Materials
Title
Introduction to Software Bill of Materials
Statement of responsibility
Deza, Alfredo
Creator
Contributor
Author
Subject
Genre
Language
  • eng
  • eng
Summary
What is an SBOM (Software Bill Of Materials) and why should you care? An SBOM is a critical cybersecurity component to keep track and catalog what is installed (and at what versions) in production environments. With recent cybersecurity threats, SBOMs play an important role to implement a remediation strategy when threats and vulnerabilities are reported. Without an SBOM, it is borderline impossible to detect what exactly is released into production, and what may be vulnerable today. Topics include: * Understand the concepts behind an SBOM * Create an SBOM and use different output formats like CycloneDX to import into other systems * Use an SBOM to detect CVE and other vulnerabilities associated with installed software * Capture information about pre-installed system dependencies and nested dependencies * Use CycloneDX and other machine-readable formats like JSON to import outputs into other systems A few resources that are helpful if you are trying to get started with SBOMs, generating them and using them to capture vulnerabilities: * A simple, user-friendly SBOM generator: Syft * A fast vulnerability matcher that uses SBOMs as input: Grype * The CycloneDX format
Characteristic
videorecording
http://library.link/vocab/creatorName
Deza, Alfredo
http://library.link/vocab/relatedWorkOrContributorName
  • Gift, Noah
  • O'Reilly Media Company
Label
Introduction to Software Bill of Materials, Deza, Alfredo
Link
https://databases.mvlc.org/connect/oreilly?ID=50115VIDEOPAIML
Instantiates
Publication
Carrier category
online resource
Carrier category code
  • cr
Carrier MARC source
rdacarrier
Color
multicolored
Content category
two-dimensional moving image
Content type code
  • tdi
Content type MARC source
rdacontent
Dimensions
unknown
Edition
1st edition
Extent
1 online resource (1 video file, approximately 32 min.)
Issuing body
Made available through: O'Reilly Media Company.
Media category
computer
Media MARC source
rdamedia
Media type code
  • c
Reproduction note
Electronic reproduction.
Specific material designation
remote
System control number
(CaSebORM)50115VIDEOPAIML
System details
Mode of access: World Wide Web
Label
Introduction to Software Bill of Materials, Deza, Alfredo
Link
https://databases.mvlc.org/connect/oreilly?ID=50115VIDEOPAIML
Publication
Carrier category
online resource
Carrier category code
  • cr
Carrier MARC source
rdacarrier
Color
multicolored
Content category
two-dimensional moving image
Content type code
  • tdi
Content type MARC source
rdacontent
Dimensions
unknown
Edition
1st edition
Extent
1 online resource (1 video file, approximately 32 min.)
Issuing body
Made available through: O'Reilly Media Company.
Media category
computer
Media MARC source
rdamedia
Media type code
  • c
Reproduction note
Electronic reproduction.
Specific material designation
remote
System control number
(CaSebORM)50115VIDEOPAIML
System details
Mode of access: World Wide Web

Library Locations

    • Merrimack Valley Library ConsortiumBorrow it
      4 High Street, Suite 175, North Andover, MA, 01845, US
      42.7009413 -71.1255084
Processing Feedback ...