A New Internet-Draft is available from the on-line Internet-Drafts directories. This Internet-Draft is a work item of the Operations and Management Area Working Group (OPSAWG) WG of the IETF.
Title : Discovering and Retrieving Software Transparency and Vulnerability Information Authors : Eliot Lear Scott Rose Filename : draft-ietf-opsawg-sbom-access-17.txt Pages : 21 Date : 2023-04-28 Abstract: To improve cybersecurity posture, automation is necessary to locate the software a device is using, and whether that software has known vulnerabilities, and what, if any recommendations suppliers may have. This memo extends the MUD YANG schema to provide the locations of software bills of materials (SBOMS) and to vulnerability information by introducing a transparency schema. The IETF datatracker status page for this Internet-Draft is: https://datatracker.ietf.org/doc/draft-ietf-opsawg-sbom-access/ There is also an htmlized version available at: https://datatracker.ietf.org/doc/html/draft-ietf-opsawg-sbom-access-17 A diff from the previous version is available at: https://author-tools.ietf.org/iddiff?url2=draft-ietf-opsawg-sbom-access-17 Internet-Drafts are also available by rsync at rsync.ietf.org::internet-drafts _______________________________________________ OPSAWG mailing list OPSAWG@ietf.org https://www.ietf.org/mailman/listinfo/opsawg