The US Cybersecurity and Infrastructure Security Agency (CISA) has initiated working groups comprising multiple stakeholders from different industries to jointly create tools for enhancing software security, such as guidelines and frameworks for Software Bill of Materials (SBOMs) and Vulnerability Exploitability Exchange (VEX) standards.

Authors

• Person: Not available Organization: Department for Science, Innovation and Technology
  Open source software best practices and supply chain risk ... - GOV.UK

Sources

• Open source software best practices and supply chain risk ... - GOV.UK www.gov.uk Department for Science, Innovation and Technology via serper

Referenced by nodes (2)

• Software Bill of Materials (SBOM) concept
• CISA entity