When is an SBOM not an SBOM? CISA’s Minimum Elements

AI Briefing

• – CISA publishes new SBOM guidance with 'Minimum Elements' standard
• – New baseline for 'good' SBOMs includes items like cryptographic hash values and software dependencies
• – Sets the standard for software components and their vulnerabilities