Is Your SBOM a Dud or Da Bomb

Do you have a compliance requirement to create a Software Bill of Materials (SBOM)?  Is that SBOM anything more than a shelf-ware artifact? This talk will review the factors driving the adoption of SBOM in the industry and how those compliance drivers are in turn affecting the industry including what makes a sufficient SBOM, what are the limitations, and how can they be addressed to ensure a accurate picture of the threat landscape?  Finally, we'll discuss how to integrate SBOM into a mature SDLC to improve the overall security of your products. Through an understanding of what SBOM is and where the limitations are, SBOM can be an effective way to not only track and identify potential vulnerabilities but also improve a Secure SDLC.