DHS and open source group release new tool for creating, translating Software Bill of Materials

The Cybersecurity and Infrastructure Security Agency and DHS Science and Technology Directorate have launched a tool with the Open Source Security Foundation to allow for the creation and translation of Software Bill of Materials across multiple formats.

The new “Protobom” tool is an “innovative open source software supply chain tool,” OpenSSF said in a Tuesday announcement.

Allan Friedman, who manages CISA’s SBOM workstreams, said, “Protobom is a step towards greater efficiency and interoperability by translating across the widely used...