[open-regulatory-compliance] FYI: Article covering use of SBOM and vulne

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]

[open-regulatory-compliance] FYI: Article covering use of SBOM and vulnerability reporting that may apply to the EU CRA Annex I part II requirements

From: "Dick Brooks" <dick@xxxxxxxxxxxxxxxxxxxxxxxxx>
Date: Wed, 30 Apr 2025 09:10:05 -0400
Delivered-to: open-regulatory-compliance@xxxxxxxxxxx
Feedback-id: i99214975:Fastmail
List-archive: <https://www.eclipse.org/mailman/private/open-regulatory-compliance/>
List-help: <mailto:open-regulatory-compliance-request@eclipse.org?subject=help>
List-subscribe: <https://www.eclipse.org/mailman/listinfo/open-regulatory-compliance>, <mailto:open-regulatory-compliance-request@eclipse.org?subject=subscribe>
List-unsubscribe: <https://www.eclipse.org/mailman/options/open-regulatory-compliance>, <mailto:open-regulatory-compliance-request@eclipse.org?subject=unsubscribe>
Organization: Business Cyber Guardian
Thread-index: Adu50TBvXVLhv0jrSiuUWBCdhGP4eQ==

Hello Everyone,

This article from Dr. Shea advising the US Department Defense on best practices for SBOM and Vulnerability management may also be insightful to the EU CRA work underway:

https://www.c4isrnet.com/opinion/2025/04/30/the-pentagon-must-balance-speed-with-safety-as-it-modernizes-software/

Thanks,

Dick Brooks

Active Member of the CISA Critical Manufacturing Sector,

Sector Coordinating Council – A Public-Private Partnership

Never trust software, always verify and report! ™

Risk always exists, but trust must be earned and awarded.™

https://businesscyberguardian.com/

Email: dick@xxxxxxxxxxxxxxxxxxxxxxxxx

Tel: +1 978-696-1788

Prev by Date: [open-regulatory-compliance] ORC WG Calls this week
Next by Date: [open-regulatory-compliance] FAQ Task Force call on Friday
Previous by thread: [open-regulatory-compliance] ORC WG Calls this week
Next by thread: [open-regulatory-compliance] FAQ Task Force call on Friday
Index(es):
- Date
- Thread

Breadcrumbs