SBOM
Software Bill of Materials
A Software Bill of Materials is a formal inventory of all components, libraries, and dependencies in a software product. SBOMs use standardized formats like SPDX or CycloneDX to document component names, versions, and supplier relationships.
Cómo se usa en ciberseguridad
Security engineers generate SBOMs during the build process and monitor them for newly disclosed vulnerabilities in third-party components. GRC analysts audit SBOM completeness to meet supply chain security requirements under frameworks like NIST SSDF and Executive Order 14028. Security architects define SBOM policies that govern which components are approved for use.
Término relacionado en el glosario: sbom
Las definiciones son explicaciones originales escritas con fines de desarrollo profesional. Para definiciones técnicas autorizadas, consulta NIST, ISO o el organismo de normalización correspondiente.