Generating Software Bill of Materials
March 25 | 7:30 – 9:00 am PDT
Join us for Generating Software Bill of Materials, with Kate Stewart, VP, Dependable Embedded Systems, The Linux Foundation.
Having an accurate view of software being imported and used in systems has become increasingly important as we see more vulnerabilities emerge in the supply chain. By generating a Software Bill of Materials (or SBOM) we’re able to help with efficient analysis for security, licensing, and other use cases.
This mentoring session will provide an overview of some of options available for generating SBOMs as well as an overview of some open source tooling to assist with generation and consumption of SBOMs.
The session will begin with an overview by Kate Stewart (45 minutes) and will be followed by Q&A – an opportunity to both ask Kate questions and for group discussion (45 minutes).
Kate Stewart, VP, Dependable Embedded Systems, The Linux Foundation
Kate Stewart works with the safety, security and license compliance communities to advance the adoption of best practices into embedded open source projects.
Kate was one of the founders of SPDX, and is currently the specification coordinator. She is also the co-lead for the NTIA SBOM formats and tooling working group. Since joining The Linux Foundation, she has launched the ELISA and Zephyr Projects among others, as well as supporting other embedded projects.
With over 30 years of experience in the software industry, she has held a variety of roles and worked as a developer in Canada, Australia, and the US and for the last 20 years has managed software development teams in the US, Canada, UK, India, and China. She received her Master’s in computer science from University of Waterloo and Bachelor’s of computer science (co-op program) from the University of Manitoba.