Blog

CISA Issues Guidance on Assembling Group of Products for SBOM

The Cybersecurity and Infrastructure Security Agency has issued guidance for creating the build for a software bill of materials for products that were assembled and tested prior to delivery.

CISA said Friday the document, titled “Guidance on Assembling a Group of Products,” aims to guide software manufacturers and integrators in developing the build SBOM for assembled products that may contain parts that experience version changes. PCB assembly

CISA Issues Guidance on Assembling Group of Products for SBOM

According to the document, certain information is required when describing a product line with a build SBOM, including an identifier, a versioning system to use with the identifier, a list of product components being distributed together as a group and a version number for each component.

The guidance was developed by the Software Bill of Materials Tooling & Implementation Working Group, a community-led working group facilitated by CISA.

ExecutiveGov, published by Executive Mosaic, is a site dedicated to the news and headlines in the federal government. ExecutiveGov serves as a news source for the hot topics and issues facing federal government departments and agencies such as Gov 2.0, cybersecurity policy, health IT, green IT and national security. We also aim to spotlight various federal government employees and interview key government executives whose impact resonates beyond their agency.

CISA Issues Guidance on Assembling Group of Products for SBOM

inverter PCBA © 2022 Copyrights Executive Mosaic All Rights Reserved