CISA's New SBOM Guidelines Get Mixed Reviews
DARKReading, Thursday, August 28th, 2025
Updated SBOM rules from CISA are a solid step toward making them more useful for cyber defenders but don't address many critical needs, experts say.
Updated federal agency guidelines for software bills of materials (SBOM) were recently released by the US Cybersecurity and Infrastructure Security Agency (CISA) with rules intended to push for additional transparency among software and component vendors. Experts agree the new rules are a hopeful step forward, but worry they overlook some serious issues facing today's software supply chain.