Understanding SBOMs in Real-World Systems—A Practical DevOps/SecOps Perspective (F13b)
Vulnerabilities in third-party and open-source components continue to pose significant risks, as demonstrated by incidents such as the XZ backdoor. The Software Bill of Materials (SBOM) is a vital tool for enhancing software transparency and securing supply chains. This talk objectively examines current cybersecurity tools, their limitations, and their role in DevSecOps and compliance. Insights focus on improving SBOM standardization and maximizing its practical effectiveness.
