SBOM, or Software Bill of Material, is a list that identifies the software components within a product, including dependencies and origins. Origins of software include Commercial Off the Shelf Software (COTS) (e.g. Microsoft Windows), internally developed software, open source software (e.g. RedHat, Python), as well as the dependencies associated with the use of the software within the system.
Applicability:
- Emerging certification process for software source code.
- Aims to enhance transparency and security by listing all components.
- Future potential for certification, currently a developing concept.
- Intellectual property challenges need to be addressed.
URL: Currently, no official certification exists