The Synopsys Software Integrity Group is now Black Duck®. Learn More

A Guide to CISA’s Six Types of SBOMs

A Software Bill of Materials (SBOM) is a detailed inventory of the components that make up a software application. SBOMs provide insights into dependencies and license compliance, security, and quality risks. And because they provide detailed visibility into the software supply chain, SBOMs have become a common and critical practice in securing it.

But no two SBOMs are the same, and the Cybersecurity Infrastructure and Security Agency (CISA) is helping companies understand the state of their software composition by defining six SBOM types that align to the software development life cycle.

In this guide, you’ll learn about the components required for each of the six CISA-defined SBOMs to help you determine which type is right for you.

Download the guide to learn

  • The benefits and limitations of each of the six SBOM types
  • How to establish an SBOM process to ensure visibility and security in your software supply chain
  • Why SCA tooling is essential in SBOM management
Six Types of SBOMs Guide Cover

Download the eBook now