SBOM

SBOMs are the answer! Now what was the question?

Nov 1, 2022 By Rob Brown In DataTrails

Last year the Log4J vulnerability perfectly illustrated how properly shared SBOMs would have helped users find and mitigate the “vulnerability of the decade”. And over the last few days we’ve been worried that we’re in the same place with OpenSSL 3.x. Why will this keep on happening? A lot has happened since The White House issued Executive Order 14028.

Read Post

DataTrails

Read more about SBOMs are the answer! Now what was the question?

How to create SBOMs in Java with Maven and Gradle

Oct 31, 2022 By Brian Vermeer In Snyk

When building applications in Java, we highly depend on external libraries and frameworks. And each Java package that is imported likely also depends on more libraries. This means that the amount of Java packages included in your application is often not really transparent. As a developer, these nested (transitive) dependencies create the problem that you probably do not know all the libraries you are actually using.

Read Post

Snyk

Read more about How to create SBOMs in Java with Maven and Gradle

Why an SBOM Strategy is Essential Worldwide

Oct 31, 2022 By Veracode In Veracode

Join Veracode and Cybeats as they engage in a discussion breaking down all of the details from creation to strategies around SBOMs.

View Video

Veracode

Read more about Why an SBOM Strategy is Essential Worldwide

Bridging the trust gap in connected supply chains

Oct 27, 2022 By DataTrails In DataTrails

In these ultra connected times we increasingly need to share data between organizations. But how can you trust data that’s been generated outside your boundary walls? By another organization or a machine? That’s the trust gap, and that’s where RKVST comes in. Instead of bridging that gap with manual processes, verifying and auditing every document, RKVST takes that same risk management approach but automates it so you can trust the data, documents supply chain information at scale.

View Video

DataTrails

Read more about Bridging the trust gap in connected supply chains

How zero trust helps reduce risk in connected supply chains

Oct 27, 2022 By DataTrails In DataTrails

What is zero trust and how does a zero trust approach helps reduce risk in connected supply chain decision making? Find out how RKVST helps automate the tracking and sharing of supply chain evidence you can rely on, by integrating with the tools businesses already use today. Jon Geater and Rob Brown from RKVST discuss zero trust at InfoSecurity Europe, London, June 2022.

View Video

DataTrails

Read more about How zero trust helps reduce risk in connected supply chains

RKVST - the Archivist of the modern internet

Oct 27, 2022 By DataTrails In DataTrails

RKVST (pronounced Archivist) is an evidence platform that delivers a reliable chain of custody for supply chain data. It proves and verifies who did what when to any asset in the supply chain which can then be shared with supply chain partners. Jon Geater , Chief Product Officer, talks about RKVST at InfoSecurity Europe, London, June 2022.

View Video

DataTrails

Read more about RKVST - the Archivist of the modern internet

RKVST Launches RKVST Free and RKVST Team SaaS Supply Chain Integrity, Transparency and Trust Solution

Aug 30, 2022 By DataTrails In DataTrails

Green aerospace company SATAVIA chooses RKVST Team to provide immutable evidence trails for aviation industry carbon offsets.

Read Post

DataTrails

Read more about RKVST Launches RKVST Free and RKVST Team SaaS Supply Chain Integrity, Transparency and Trust Solution

Establishing trust in your software supply chain with an SBOM

Aug 30, 2022 By Mike McGuire In Synopsys

A software Bill of Materials or SBOM provides transparency into an organization’s software, protecting it from supply chain risks. Just because the component you add to your application is secure today doesn’t mean that the application will still be secure tomorrow.

Read Post

Synopsys

Read more about Establishing trust in your software supply chain with an SBOM

Harmonizing the Federal Effort on Automating Software Bill of Materials

Aug 29, 2022 By Kosta Kalpos In Splunk

When the Biden administration released Executive Order 14028, “Improving the Nation's Cybersecurity”, it included guidance to enhance the security of the nation’s software supply chain. As a result, key building blocks are being developed to both strengthen software security and bolster software Supply Chain Risk Management (SCRM) programs across the Federal government.

Read Post

Splunk

Read more about Harmonizing the Federal Effort on Automating Software Bill of Materials

SBOM 101 - All the questions you were afraid to ask Software Bill of Materials

Aug 23, 2022 By Álvaro Iradier In Sysdig

During many recent security incidents, we hear a lot of messages about the lack of knowledge of the code dependencies, attacks to the software supply chain, Software Bill of Materials (SBOM), digital signatures, provenance, attestation, etc. The fact is, every time a new vulnerability appears in the landscape, we usually need to spend a lot of time and effort to detect the real impact on the applications and services that are running in our environment.

Read Post

Sysdig

Read more about SBOM 101 - All the questions you were afraid to ask Software Bill of Materials

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

SBOM

SBOMs are the answer! Now what was the question?

How to create SBOMs in Java with Maven and Gradle

Why an SBOM Strategy is Essential Worldwide

Bridging the trust gap in connected supply chains

How zero trust helps reduce risk in connected supply chains

RKVST - the Archivist of the modern internet

RKVST Launches RKVST Free and RKVST Team SaaS Supply Chain Integrity, Transparency and Trust Solution

Establishing trust in your software supply chain with an SBOM

Harmonizing the Federal Effort on Automating Software Bill of Materials

SBOM 101 - All the questions you were afraid to ask Software Bill of Materials

Monthly Archive

Follow Us