Generating SBoMs Utilizing Structured Threat Information Expression JSON bundles
Conference
·
OSTI ID:1968308
- Idaho National Laboratory
With cyber-attacks on the rise, information is one of the first lines of defense. Now more than ever, security experts and developers need efficient ways to know if their software may be outdated or vulnerable to emerging threats. By generating a Software Bill of Material based on STIX2/JSON bundles, security experts and developers can ensure that they know where to find what can go wrong with their systems before the hackers do. As part of the Infrastructure Expression project, Idaho National Laboratory (INL) is currently working on ways that can aid in the development of efficient SBOMs using Structured Threat Information Expression (STIX). Doing so can provide an efficient first line of defense for detection and monitoring that can be easily used by cyber personnel from beginners to highly skilled experts.
- Research Organization:
- Idaho National Laboratory (INL), Idaho Falls, ID (United States)
- Sponsoring Organization:
- USDOE Office of Energy Efficiency and Renewable Energy (EERE)
- DOE Contract Number:
- AC07-05ID14517;
- OSTI ID:
- 1968308
- Report Number(s):
- INL/CON-21-64718-Rev000
- Conference Information:
- EnergySec Security & Compliance Summit, 1600, Disneyland Drive, Anaheim, CA, 92802, United States, 10/04/2021 - 10/06/2021
- Country of Publication:
- United States
- Language:
- English
Similar Records
A Privacy-Preserving Cyber Threat Intelligence Sharing System
Cyber Threat Dictionary Using MITRE ATT&CK Matrix and NIST Cybersecurity Framework Mapping
STAR
Journal Article
·
Sun Oct 27 20:00:00 EDT 2024
· 2024 IEEE 6th International Conference on Trust, Privacy and Security in Intelligent Systems, and Applications (TPS-ISA)
·
OSTI ID:2587202
Cyber Threat Dictionary Using MITRE ATT&CK Matrix and NIST Cybersecurity Framework Mapping
Conference
·
Sun Nov 01 23:00:00 EST 2020
·
OSTI ID:1734565
STAR
Software
·
Wed Sep 16 20:00:00 EDT 2020
·
OSTI ID:code-45076