April 04, 2024

Developing and Using a Software Bill of Materials Framework

Listen Later

37 minutes

With the increasing complexity of software systems, the use of third-party components has become a widespread practice. Cyber disruptions, such as SolarWinds and Log4j, demonstrate the harm that can occur when organizations fail to manage third-party components in their software systems. In this podcast from the Carnegie Mellon University Software Engineering Institute, Carol Woody, principal researcher, and Michael Bandor, a senior software engineer, discuss a Software Bill of Materials (SBOMs) framework to help promote the use of SBOMs and establish a more comprehensive set of practices and processes that organizations can leverage as they build their programs. They also offer guidance for government agencies who are interested in incorporating SBOMs into their work.

...more

View all episodes

View all episodes

Download on the App Store

Download on the App Store

Get it on Google Play

Software Engineering Institute (SEI) Podcast Series

By Members of Technical Staff at the Software Engineering Institute

4.5

1818 ratings

April 04, 2024

Developing and Using a Software Bill of Materials Framework

Listen Later

37 minutes

With the increasing complexity of software systems, the use of third-party components has become a widespread practice. Cyber disruptions, such as SolarWinds and Log4j, demonstrate the harm that can occur when organizations fail to manage third-party components in their software systems. In this podcast from the Carnegie Mellon University Software Engineering Institute, Carol Woody, principal researcher, and Michael Bandor, a senior software engineer, discuss a Software Bill of Materials (SBOMs) framework to help promote the use of SBOMs and establish a more comprehensive set of practices and processes that organizations can leverage as they build their programs. They also offer guidance for government agencies who are interested in incorporating SBOMs into their work.

...more

More shows like Software Engineering Institute (SEI) Podcast Series

Freakonomics Radio by Freakonomics Radio + Stitcher

Freakonomics Radio

32,302 Listeners

Software Engineering Radio - the podcast for professional software developers by team@se-radio.net (SE-Radio Team)

Software Engineering Radio - the podcast for professional software developers

272 Listeners

Making Sense with Sam Harris by Sam Harris

Making Sense with Sam Harris

26,353 Listeners

The a16z Show by Andreessen Horowitz

The a16z Show

1,098 Listeners

Software Engineering Daily by Software Engineering Daily

Software Engineering Daily

623 Listeners

Risky Business by Patrick Gray

Risky Business

373 Listeners

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) by Johannes B. Ullrich

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

649 Listeners

Thoughtworks Technology Podcast by Thoughtworks

Thoughtworks Technology Podcast

45 Listeners

Smashing Security by Graham Cluley

Smashing Security

321 Listeners

Darknet Diaries by Jack Rhysider

Darknet Diaries

8,119 Listeners

Defense in Depth by David Spark, Steve Zalewski, Geoff Belknap

Defense in Depth

74 Listeners

Make It Real by CMU Engineering

Make It Real

0 Listeners

SEI Cyber Talks by Members of Technical Staff

SEI Cyber Talks

0 Listeners

The Journal. by The Wall Street Journal & Spotify Studios

The Journal.

6,120 Listeners

Deep Questions with Cal Newport by Cal Newport

Deep Questions with Cal Newport

1,339 Listeners

Cybersecurity Headlines by CISO Series

Cybersecurity Headlines

138 Listeners

The Ezra Klein Show by New York Times Opinion

The Ezra Klein Show

16,379 Listeners