IEEE

Challenges of Producing Software Bill of Materials for Java

Abstract: Software bills of materials (SBOMs) promise to become the backbone of software supply chain hardening. We deep-dive into six tools and the SBOMs they produce for complex open source Java ...
IEEE

Invited Tutorial: Macaron – A Comprehensive Framework for Securing and Analyzing the Software Supply Chain

Abstract: The software supply chain has become a critical attack vector for adversaries aiming to infiltrate software development workflows by injecting malicious code into third-party packages and ...