![31-3-2021-8ss-[Converted].jpg](https://static.wixstatic.com/media/3d993a_652fb94884db4aba86345d3d4e7b56a7~mv2.jpg/v1/fill/w_147,h_63,al_c,q_80,usm_0.66_1.00_0.01,blur_2,enc_auto/3d993a_652fb94884db4aba86345d3d4e7b56a7~mv2.jpg)
US Executive Order #14028
The Minimum Elements
For a Software Bill of Materials (SBOM)
Executive Order 14028, Improving the Nation's Cybersecurity, requires federal agencies to obtain a Software Bill of Materials (SBOM) for all software they acquire, starting with new acquisitions in fiscal year 2023.
The OMB guidance on the implementation of Executive Order 14028 defines the minimum elements that must be included in an SBOM for federal government software purchases. These elements include:
-
The name and version of each software component
-
The vendor of each software component
-
The license under which each software component is distributed
-
The cryptographic hash of each software component
-
The location of each software component
The requirement for SBOMs in federal government software purchases is a significant step forward in improving the security of the federal government's software supply chain. SBOMs can help to identify and track software vulnerabilities, and to make informed decisions about software procurement and use. This will help to protect the federal government from cyberattacks.
Here are some of the benefits of using VeriBOM for federal government software purchases:
-
VeriBOM can help to identify and track software vulnerabilities.
-
VeriBOM can help to make informed decisions about software procurement and use.
-
VeriBOM can help to improve the security of the federal government's software supply chain.
-
VeriBOM can help to reduce the risk of cyberattacks.