Name: Software Bills of Behaviors: Why SBOMs Aren't Enough
Start: 2023-06-13T14:00:00-0400
End: 2023-06-13T14:50:00-0400

Streaming: https://mssvideo.vcu.edu/RVAsec

Back To Schedule

Software Bills of Behaviors: Why SBOMs Aren't Enough

Feedback form is now closed.

Video Stream

Most software supply chain-related tools fall into a few categories: SBOM generation, vulnerability analysis, build policies, and source-code analysis. These do not address the problem exemplified by the SolarWinds supply-chain malware insertion attack. Software Bills of Behaviors provide an understanding of what the software is doing and how it has changed providing a defense against Solarwinds-style attacks.

Speakers

Andrew Hendela

Co-founder, Karambit.AI

Andrew has over a decade of cybersecurity experience leading teams tackling hard challenges. His technical expertise involves automating a wide range of problems, including cyber attribution, malware analysis, and vulnerability research.

Tuesday June 13, 2023 2:00pm - 2:50pm EDT
1st Floor, Magnolia Room

Technical

Attendees (43)

D
G
View All →

RVAsec 2023

Log in to save this to your schedule, view media, leave feedback and see who's attending!

Andrew Hendela

Attendees (43)