Firewalls Don't Stop Dragons Podcast

It’s Time to Drop the SBOM

Listen Later

The first step to solving any problem is gathering as much information as you can. Unfortunately, today we’re basically flying blind when it comes to identifying and resolving latent software bugs in our systems. Software today is made up of dozens if not hundreds of distinct components. Like automobiles, these piece parts can come from many different vendors. And even the parts from those vendors are likely themselves made up of many sub-components from yet other vendors. But you can bet that Ford and Toyota have a complete and accurate list of each and every one of the components in their vehicles – knowing who made them, which lot or batch they were from, which revision of the part they have, and so on. Because at the end of the day, the auto maker is responsible for knowing this in case there’s a safety issue. This is not true for software makers… yet. Allan Friedman and his team at the National Telecommunications and Information Administration (NTIA, a part of the Dept. of Commerce) are trying to change that.

Allan Friedman is the Director of Cybersecurity Initiatives at the National Telecommunications and Information Administration, which is part of the US department of Commerce,. There he coordinates cross-sector efforts to address key challenges in the cybersecurity ecosystem.

Further Info
  • NTIA’s SBOM website: https://www.ntia.gov/sbom 
  • Twitter #SBOM: https://twitter.com/search?q=%23SBOM 
  • Become a Patron! https://www.patreon.com/FirewallsDontStopDragons 
  • Would you like me to speak to your group about security and/or privacy? http://bit.ly/Firewalls-Speaker
  • Generate secure passphrases! https://d20key.com/#/
    • ...more
    View all episodesView all episodes
    Download on the App Store
    Firewalls Don't Stop Dragons PodcastBy Carey Parker
    • 4.9
    • 4.9
    • 4.9
    • 4.9
    • 4.9

    4.9

    64 ratings

    More shows like Firewalls Don't Stop Dragons Podcast

    View all
    Freakonomics Radio by Freakonomics Radio + Stitcher

    Freakonomics Radio

    32,005 Listeners

    WSJ What’s News by The Wall Street Journal

    WSJ What’s News

    4,339 Listeners

    Making Sense with Sam Harris by Sam Harris

    Making Sense with Sam Harris

    26,327 Listeners

    Security Now (Audio) by TWiT

    Security Now (Audio)

    2,010 Listeners

    Risky Business by Patrick Gray

    Risky Business

    372 Listeners

    Click Here by Recorded Future News

    Click Here

    418 Listeners

    Darknet Diaries by Jack Rhysider

    Darknet Diaries

    8,046 Listeners

    Your Undivided Attention by The Center for Humane Technology, Tristan Harris, Daniel Barcay and Aza Raskin

    Your Undivided Attention

    1,603 Listeners

    Techlore Surveillance Report by Techlore

    Techlore Surveillance Report

    105 Listeners

    The Ancients by History Hit

    The Ancients

    3,282 Listeners

    Hard Fork by The New York Times

    Hard Fork

    5,511 Listeners

    The Rest Is History by Goalhanger

    The Rest Is History

    15,271 Listeners

    Closed Network Privacy Podcast by Simon Walsh

    Closed Network Privacy Podcast

    20 Listeners

    The Peter Zeihan Podcast Series by Peter Zeihan

    The Peter Zeihan Podcast Series

    401 Listeners

    The 404 Media Podcast by 404 Media

    The 404 Media Podcast

    386 Listeners