SIGSOFT / ACM Webinars

We hope you can join us for the upcoming SIGOFT and ACM PD sponsored webinars.

Follow the links below to register for these free 60 minute webinars and be sure to share this with friends and colleagues who may be interested in these topics. Check out our past events, all available on demand.

Each talk will be followed by a moderated live question and answer session.

Note: If you’d like to attend but can’t make it to the virtual event, you still need to register to receive a recording of the webinar when it becomes available. You can stream this and all ACM SIGSOFT and ACM Learning Webinars on your mobile device, including smartphones and tablets.

Interested in presenting a webinar? Check our page for prospective presenters to find out how.

From SBOM to Trusted Software Supply Chain: How Far Are We?

Dec 13, 2022 7:00 PM Eastern Standard Time

Watch on YouTube

Registration and more information

Speaker: Xin Xia, moderator: Xing Hu

Abstract:

The security and transparency of the software supply chain have been an emergency problem met by the government, industry, and academia. Software Bill of Materials (SBOM), which records the ingredients that makeup software components, is widely used as a key building block to support the trusted software supply chain (TSSC). Except for SBOM, do we need to invent other technologies to support TSSC? What is the future road of TSSC? In this talk, I will present our recent progress in this area. I will introduce our initial works on SBOM generation and consumption, and then I will present our works relevant to vulnerability management (e.g., silent vulnerability bug reports and fixes identification, vulnerability detection, and CVE improvement) and supply chain attack prevention. Finally, I will briefly mention the future direction of TSSC.