Skip to content

WHITEPAPER

Software Bill of Materials Consumer Use Cases

Reduce the risk of open-source and third-party code with a Software Bill of Materials.

As evidenced by some of the most significant cyberattacks in the past 18 months-- from Solar Winds and Kaseya to Colonial Pipeline and the ongoing repercussions of Log4j--supply chain attacks are becoming an even greater threat to today's organizations. A recent report from the EU Agency for Cybersecurity (ENISA) projected a 400% increase in the number of supply chain attacks in 2021 from the previous year, with more than half of these attacks perpetrated by nation-state actors.

In response to this new world of unverified trust and indirect attacks, the U.S. government issued Executive Order (EO) 14028 in May 2021. One of the most sweeping pieces of presidential policy on cybersecurity, EO 14028 addresses the critical role of improved software supply chain security and the need for more transparency. This includes requiring suppliers to provide an SBOM to downstream organizations and software developers. 

In anticipation of EO 14028, which takes full effect in the fall of 2022, this whitepaper examines key SBOM use cases in validating software supply chain trust and creating transparency into how the software was built. It also explores the benefits of SBOMs and answers common questions. 

Download the whitepaper for an introduction into SBOMs and guidance on how your organization can get started.