The recent presidential Executive Order on Cybersecurity focuses on producing and consuming SBOMs Software Bill of Materials. SBOMs are especially critical for a national digital infrastructure used within government agencies and in critical industries that present national security risks if penetrated. SBOMs improve understanding of those software components operational and cyber risks from their originating supply chain however their use is not widespread.
The SBOM readiness survey is the Linux Foundations first project addressing how to secure the software supply chain. Software producers and consumers will be surveyed to better understand organizational approaches to software development procurement compliance and most important security.
Key questions the survey will address include.
Data from this survey will enable the development of a maturity model to establish the value of SBOMs within software supply chains over time. To take the 2021 SBOM Readiness Survey click the button below.