The U.S. government’s mandates around the creation and delivery of SBOMs (software bill of materials) to help mitigate supply chain attacks, has run into strong objections from big-name technology vendors.
Asserting that “it is premature and of limited utility” for vendors to accurately provide a nested inventory of the components that go into making software components, a lobbying group for big tech is urging the federal government’s Office of Management and Budget (OMB) to “discourage agencies” from requiring SBOMs.
Also Read: Key Strategies for Enterprise Cybersecurity in 2023
Several well-known companies are members of the trade association known as the ITI (Information Technology Industry Council), including Amazon, Microsoft, Apple, Intel, AMD, Lenovo, IBM, Cisco, Samsung, TSMC, Qualcomm, Zoom, and Palo Alto Networks.
Read More: Big Tech Vendors Object to US Gov SBOM Mandate