By using this site, you agree to the Privacy Policy and Terms of Use.
Accept

News Junction

Notification Show More
Font ResizerAa
  • Home
  • World News
    World NewsShow More
    US-China talks resume as Trump hails ‘total reset’ in trade relations
    US-China talks resume as Trump hails ‘total reset’ in trade relations
    May 11, 2025
    UK plans to end ‘failed experiment’ in immigration
    UK plans to end ‘failed experiment’ in immigration
    May 11, 2025
    Vladimir Putin’s offer of direct talks with Ukraine is the latest attempt to avoid committing to a 30-day ceasefire | World News
    Vladimir Putin’s offer of direct talks with Ukraine is the latest attempt to avoid committing to a 30-day ceasefire | World News
    May 11, 2025
    Putin proposes direct Russia-Ukraine talks in Istanbul on May 15 | Russia-Ukraine war News
    Putin proposes direct Russia-Ukraine talks in Istanbul on May 15 | Russia-Ukraine war News
    May 11, 2025
    Why is Germany such a mess? — RT World News
    Why is Germany such a mess? — RT World News
    May 11, 2025
  • Business
    BusinessShow More
    Ukraine blows up bridges to consolidate its positions in Russia
    Ukraine blows up bridges to consolidate its positions in Russia
    August 18, 2024
    Commentary: AI phones from Google and Apple will erode trust in everything
    Commentary: AI phones from Google and Apple will erode trust in everything
    August 18, 2024
    The most famous Indian Dishes – Insights Success
    The most famous Indian Dishes – Insights Success
    August 18, 2024
    Life on the road as a female long rides cyclist
    Life on the road as a female long rides cyclist
    August 18, 2024
    UK inflation rises to 2.2%
    UK inflation rises to 2.2%
    August 18, 2024
  • Cryptocurrency
    CryptocurrencyShow More
    Bitcoin Price (BTC) News: 5K in Play
    Bitcoin Price (BTC) News: $105K in Play
    May 11, 2025
    Price analysis 3/17: SPX, DXY, BTC, ETH, XRP, BNB, SOL, DOGE, ADA, PI
    Price analysis 3/17: SPX, DXY, BTC, ETH, XRP, BNB, SOL, DOGE, ADA, PI
    May 11, 2025
    Why is Ethereum (ETH) price up today?
    Why is Ethereum (ETH) price up today?
    May 11, 2025
    Bitcoin SV investors attempt to resurrect 2019 Binance lawsuit
    Bitcoin SV investors attempt to resurrect 2019 Binance lawsuit
    May 11, 2025
    Ex-UFC champ Conor McGregor touts Irish Bitcoin reserve in presidential bid
    Ex-UFC champ Conor McGregor touts Irish Bitcoin reserve in presidential bid
    May 11, 2025
  • Technology
    TechnologyShow More
    How to Improve Your Spotify Recommendations
    How to Improve Your Spotify Recommendations
    August 18, 2024
    X says it’s closing operations in Brazil
    X says it’s closing operations in Brazil
    August 18, 2024
    Supermoon set to rise: Top tips for amateur photographers | Science & Tech News
    Supermoon set to rise: Top tips for amateur photographers | Science & Tech News
    August 18, 2024
    Scientists Want to See Videos of Your Cat for a New Study
    Scientists Want to See Videos of Your Cat for a New Study
    August 18, 2024
    OpenAI’s new voice mode let me talk with my phone, not to it
    OpenAI’s new voice mode let me talk with my phone, not to it
    August 18, 2024
  • Entertainment
  • Sports News
  • People
  • Trend
Reading: Biden’s SBOM mandate a ‘shot heard around the world’, report says
Share
Font ResizerAa

News Junction

  • World News
  • Business
  • Technology
  • Cryptocurrency
  • Trend
  • Entertainment
Search
  • Recent Headlines in Entertainment, World News, and Cryptocurrency – NewsJunction
  • World News
  • Business
  • Cryptocurrency
  • Technology
  • Entertainment
  • Sports News
  • People
  • Trend
Have an existing account? Sign In
Follow US
News Junction > Blog > Technology > Biden’s SBOM mandate a ‘shot heard around the world’, report says
Biden’s SBOM mandate a ‘shot heard around the world’, report says
Technology

Biden’s SBOM mandate a ‘shot heard around the world’, report says

Published August 4, 2023
Share
7 Min Read
SHARE

Contents
Regulation highly favouredToo many cooks?

Two and a quarter years after President Biden signed an Executive Order (EO) to harden the US’ cyber security defences in the wake of high-profile attacks on SolarWinds, Microsoft Exchange and Colonial Pipeline, research produced by Sonatype has revealed that the mandate to improve software supply chain security has spurred action on this side of the Atlantic as well.

Sonatype polled security leaders at organisations in both the UK and US, and found that 76% of enterprises have adopted a software bill of materials (SBOM), up from a paltry 4% prior to the signing of the EO, and another 16% plan to do so in the next 12 months, across both countries.

The findings also revealed that SBOMs are becoming a key procurement requirement, with 60% of respondents now making it a contractual condition that suppliers they work with maintain an SBOM, and 37% planning to mandate this in the future.

Crucially, among UK respondents who had adopted new SBOM policies, a significant 44% said they did so in direct response to Biden’s Executive Order, a clear sign that UK IT leaders are keen to keep on top of US regulations to help their organisations operate effectively in the UK’s largest trading partner – the US received 20.6% of UK exports in 2022.

“We’ve been highlighting for years the value of better visibility into the software supply chain,” said Wayne Jackson, CEO at Sonatype. “Governments worldwide have to play their part in holding vendors accountable, and we’re finally seeing that come to fruition with rising SBOM adoption as a result of regulatory pressures.

“But we need to see international governments and businesses on the same page for policy to avoid a messy patchwork of disaggregated regulations that all tackle cyber resilience in different ways. It could otherwise stifle innovation in really crucial areas of software development like the open source ecosystem. Active communication between the private and public sector will go a long way to avoid that.”

Sonatype co-founder and CTO Brian Fox additionally observed that while it was pleasing to see SBOMs being more widely adopted, the flipside of the story was that if 76% of organisations have done so, 24% have not.

“It echoes our research findings last year showing many organisations are a lot farther behind on software supply chain management than they think they are,” said Fox.

“SBOMs are just ‘step one’ to cyber resilience – there’s a whole lot more that comes after that list of ingredients if you want to achieve good software hygiene, like investing in tools for software composition analysis. If you’re not at that first step yet, you’re going to fall behind.”

Regulation highly favoured

UK respondents also expressed more confidence that that government regulation was moving the needle on cyber security in general, with the percentages who believed that US-originated directives such as Biden’s Executive Order, the Securing Open Source Software Act, the CISA Secure by Design Guidelines and the NIST Software Security in Supply Chains regulations were effective for improving cyber security outpacing the percentage of Americans who thought the same.

The Brits were also more in favour of GDPR and the EU Cyber Resilience Act, although this is perhaps less surprising.

Asked which of the same set of regulations was most effective in improving cyber security, there was clear support for all, but UK respondents tended to prefer the CISA guidelines over US respondents, who were much more inclined to prefer the NIST regulations.

The report’s authors suggested this may have more than a little to do with the involvement of the UK’s National Cyber Security Centre (NCSC) in the CISA project. Nevertheless, they said, “this highlights the positive impact these regulations have had and perfectly highlights how US regulation holds significant sway over UK cyber security policy”.

Significantly, the report also found that Brits tended to feel less positive about the software supply chain regulation and guidance available in the UK – 68% compared to 84% of US respondents, who felt positive about what was on offer in the US. Sonatype suggested this may have something to do with the fact that the US has clearly introduced more guidance already – in the UK, things have not moved much beyond the consultation stage.

The report’s authors added that this shows there is a huge appetite for effective – or any – regulation in the UK.

Too many cooks?

Spnatype’s research additionally highlighted a trend in the US for security leaders to feel there was a little too much regulation in play.

This was further highlighted at a recent event called SBOM-a-rama, which was hosted by CISA in the US, where attendees agreed there had been incremental process on SBOMs, but there was still a long way to go to establish truly effective guidance.

An issue cited by many was confusion over standards and regulations that were in conflict with one another, and multiple instances of overlap in the CISA and NIST guidelines and in those issued by other non-governmental organisations, such as the Internet Engineering Task Force.

According to Computer Weekly’s sister title, TechTarget IT Operations, which interviewed SBOM-a-rama attendees, some organisations were starting to wonder what would happen if they simply didn’t bother complying.

“A common question that I’ve been hearing a lot [from clients] is, ‘Well, what if we just don’t comply and we accept that risk?’ and, ‘Is there anything that’s actually going to happen?’,” said one conference-goer who identified themselves as working for Deloitte, a member of the Big Four group of regulated accounting firms.

#Bidens #SBOM #mandate #shot #heard #world #report

TAGGED:BidensheardmandatereportSBOMshotWorld
Share This Article
Facebook Twitter Pinterest Whatsapp Whatsapp LinkedIn Email Copy Link Print
Share
What do you think?
Love0
Sad0
Happy0
Sleepy0
Angry0
Dead0
Wink0
Previous Article Taylor Swift gave 0,000 bonuses to about 50 truck drivers who worked on Eras Tour Taylor Swift gave $100,000 bonuses to about 50 truck drivers who worked on Eras Tour
Next Article Shiba Memu Announces BitMart Listing As Presale Soars Past .5M…. Shiba Memu Announces BitMart Listing As Presale Soars Past $1.5M….
- Advertisement -

Latest Post

US-China talks resume as Trump hails ‘total reset’ in trade relations
US-China talks resume as Trump hails ‘total reset’ in trade relations
World News
UK plans to end ‘failed experiment’ in immigration
UK plans to end ‘failed experiment’ in immigration
World News
Bitcoin Price (BTC) News: 5K in Play
Bitcoin Price (BTC) News: $105K in Play
Cryptocurrency
Price analysis 3/17: SPX, DXY, BTC, ETH, XRP, BNB, SOL, DOGE, ADA, PI
Price analysis 3/17: SPX, DXY, BTC, ETH, XRP, BNB, SOL, DOGE, ADA, PI
Cryptocurrency
Vladimir Putin’s offer of direct talks with Ukraine is the latest attempt to avoid committing to a 30-day ceasefire | World News
Vladimir Putin’s offer of direct talks with Ukraine is the latest attempt to avoid committing to a 30-day ceasefire | World News
World News
Why is Ethereum (ETH) price up today?
Why is Ethereum (ETH) price up today?
Cryptocurrency
- Advertisement -

You Might Also Like

Atomic, GV, & SOSV join the Startup Battlefield judges lineup at TechCrunch Disrupt 2023
Technology

Atomic, GV, & SOSV join the Startup Battlefield judges lineup at TechCrunch Disrupt 2023

August 15, 2023
Kate Middleton released from hospital 2 weeks after abdominal surgery – National
World News

Kate Middleton released from hospital 2 weeks after abdominal surgery – National

January 29, 2024
Canada condemns alleged Russian interference in 2024 U.S. election – National
World News

Canada condemns alleged Russian interference in 2024 U.S. election – National

September 6, 2024
New York City bans TikTok for officials — RT World News
World News

New York City bans TikTok for officials — RT World News

August 17, 2023

About Us

NEWS JUNCTION (NewsJunction.xyz) Your trusted destination for global news. Stay informed with our timely and accurate reporting on diverse topics, including politics, technology, science, entertainment, sports, and more. Count on us for unbiased and reliable updates at your fingertips.

Quick Link

  • About
  • Disclaimer
  • Privacy Policy
  • Terms of Use
  • Contact

Top Categories

  • World News
  • Business
  • Technology
  • Entertainment
  • Cryptocurrency
  • Sports News
  • Trend
  • People

Subscribe

Subscribe to our newsletter to get our newest articles instantly!

    © 2023 News Junction.
    • Blog
    • Advertise
    • Contact
    Welcome Back!

    Sign in to your account

    Username or Email Address
    Password

    Lost your password?