Article Details

The XBOM vs SBOM debate. Why an eXtended Software Bill of Materials could be the next step up in cybersecurity. Webinar A Software Bill of Materials (SBOM) has become a non-negotiable requirement to meet regulatory and buyer requirements. But does this provide enough protection if it can give only a partial view into interconnected and ever-changing application attack surfaces? Introduced in May 2021 when the US Government issued its Executive Order on Improving the Nation's Cybersecurity, SBOM is a tool to manage and secure applications providing a comprehensive list of all software components, dependencies, and metadata associated with an application. While it surveys the foundational building blocks of an application, is this enough? To get a more accurate, comprehensive view of your application, infrastructure, and pipeline components, perhaps you need more – an eXtended software bill of materials which pull SBOMs up to a higher level of veracity, for example. XBOMs can build on top of SBOMS to give you an exhaustive inventory of all your application and supply chain components, associated risks, and how they change over time. You can learn more by joining our latest webinar ­- Why You Need an XBOM: An eXtended Software Bill of Materials - on 28 November at 5pm GMT/12pm ET/8am PT. You'll find out how and why your SBOM might be is lacking and how an XBOM can take your application and supply chain security program to the next level. Sign up to watch the webinar here and we'll send you a reminder when it's time to log in. Sponsored by Apiiro.