Rob Graham

Rob Graham

Robert Graham is a well-known cybersecurity researcher. He speaks frequently at conferences. Some of his popular tools can be found on his GitHub page at

January 14, 2019 | Rob Graham

Software Bill of Materials (SBoM) - Does It Work for DevSecOps?

There has been much discussion of a “software bill of materials” (SBoM) lately, for use when addressing security vulnerabilities. Many are curious, wanting to learn more. Googling the term gives lots of positive descriptions. This post will go negative, describing problems with the concept. Rather than cover the entire concept, I want focus on a narrow part of…

Watch a Demo ›
Get Price Free Trial