当前位置:
X-MOL 学术
›
IEEE Secur. Priv.
›
论文详情
Our official English website, www.x-mol.net, welcomes your feedback! (Note: you will need to create a separate account there.)
A Viewpoint on Knowing Software: Bill of Materials Quality When You See It
IEEE Security & Privacy ( IF 1.9 ) Pub Date : 2023-11-13 , DOI: 10.1109/msec.2023.3315887 Santiago Torres-Arias 1 , Dan Geer 2 , John Speed Meyers 3
IEEE Security & Privacy ( IF 1.9 ) Pub Date : 2023-11-13 , DOI: 10.1109/msec.2023.3315887 Santiago Torres-Arias 1 , Dan Geer 2 , John Speed Meyers 3
Affiliation
Software bills of materials (SBOMs) have become a required mechanism to communicate software supply chain information. However, even though they experience wide and increasing adoption, using them to improve supply chain security remains a challenge. We posit that, in order to achieve the intended goal of SBOMs, we must first develop mechanisms to measure their quality.
中文翻译:
了解软件的观点:材料清单质量当你看到它
软件物料清单 (SBOM) 已成为传达软件供应链信息的必需机制。然而,尽管它们得到了广泛且不断增加的采用,但利用它们来提高供应链安全仍然是一个挑战。我们认为,为了实现SBOM的预期目标,我们必须首先制定衡量其质量的机制。
更新日期:2023-11-14
中文翻译:
了解软件的观点:材料清单质量当你看到它
软件物料清单 (SBOM) 已成为传达软件供应链信息的必需机制。然而,尽管它们得到了广泛且不断增加的采用,但利用它们来提高供应链安全仍然是一个挑战。我们认为,为了实现SBOM的预期目标,我们必须首先制定衡量其质量的机制。
京公网安备 11010802027423号