The talk will briefly cover the below topics :
1. Introduction to Software Supply Chain Security:
· Importance of securing the software supply chain.
· Overview of common threats and vulnerabilities.
2. Understanding SBOM (Software Bill of Materials):
· Definition and purpose of SBOM.
· How SBOM helps in identifying and managing software components.
· Benefits of SBOM in enhancing transparency and security.
3. Role of CERT (Computer Emergency Response Team):
· Functions and responsibilities of CERT.
· How CERT contributes to incident response and vulnerability management.
· Examples of CERT’s impact on improving software security.
4. OpenChain Project:
· Introduction to the OpenChain Project.
· How OpenChain standardizes open-source compliance.
· The significance of OpenChain in ensuring license compliance and reducing legal risks.
5. Integrating SBOM, CERT, and OpenChain for Comprehensive Security:
· How these tools and frameworks complement each other.
· Strategies for integrating SBOM, CERT, and OpenChain into your security practices.