Report on ‘SBOM’ by Foundation for Defense of Democracies urges guidance on software requirements in federal contracts

A new report from a national security think tank proposes a “phased approach” to requiring federal contractors to provide a “Software Bill of Materials,” and recommends putting out additional guidance on expectations for industry.

The National Telecommunications and Information Administration has led a multistakeholder effort to understand the SBOM concept over the past three years, and was tasked in May to produce a report on what should be included in the definition of “minimum elements” of an SBOM as part...