English
Related papers

Related papers: Automatic Bill of Materials

200 papers

Software supply chain attacks, which exploit the build process or artifacts used in the process of building a software product, are increasingly of concern. To combat these attacks, one must be able to check that every artifact that a…

Software Engineering · Computer Science 2024-02-15 Bharathi Seshadri , Yongkui Han , Chris Olson , David Pollak , Vojislav Tomasevic

The rapid growth of software supply chain attacks has attracted considerable attention to software bill of materials (SBOM). SBOMs are a crucial building block to ensure the transparency of software supply chains that helps improve software…

Software Engineering · Computer Science 2023-02-08 Boming Xia , Tingting Bi , Zhenchang Xing , Qinghua Lu , Liming Zhu

Most of the current software security analysis tools assess vulnerabilities in isolation. However, sophisticated software supply chain security threats often stem from cascaded vulnerability and security weakness chains that span dependent…

Software Engineering · Computer Science 2026-01-29 Laura Baird , Armin Moin

Modern software engineering increasingly relies on open, community-driven standards, yet how such standards are created in fast-evolving domains like AI-powered systems remains underexplored. This paper presents a detailed experience report…

A Bill of Materials (BoM) is a list of all components on a printed circuit board (PCB). Since BoMs are useful for hardware assurance, automatic BoM extraction (AutoBoM) is of great interest to the government and electronics industry. To…

Image and Video Processing · Electrical Eng. & Systems 2023-07-26 Olivia P. Dizon-Paradis , Daniel E. Capecci , Nathan T. Jessurun , Damon L. Woodard , Mark M. Tehranipoor , Navid Asadizanjani

Supply chain security is extremely important for modern applications running at scale in the cloud. In fact, they involve a large number of heterogeneous microservices that also include third-party software. As a result, security…

Cryptography and Security · Computer Science 2025-10-08 Jacopo Bufalino , Mario Di Francesco , Agathe Blaise , Stefano Secci

Software Bills of Material (SBOMs), which improve transparency by listing the components constituting software, are a key countermeasure to the mounting problem of Software Supply Chain attacks. SBOM generation tools take project source…

Cryptography and Security · Computer Science 2024-09-04 Serena Cofano , Giacomo Benedetti , Matteo Dell'Amico

Software Bill of Materials (SBOMs) are increasingly regarded as essential tools for securing software supply chains (SSCs), yet their real-world use and adoption barriers remain poorly understood. This systematic literature review…

Software Engineering · Computer Science 2025-06-06 Eric O'Donoghue , Yvette Hastings , Ernesto Ortiz , A. Redempta Manzi Muneza

Software supply chain security compromises often stem from cascaded interactions of vulnerabilities, for example, between multiple vulnerable components. Yet, Software Bill of Materials (SBOM)-based pipelines for security analysis typically…

Software Engineering · Computer Science 2026-04-08 Laura Baird , Armin Moin

Inaccuracies in conventional dependency-tracking methods frequently undermine the security and integrity of modern software supply chains. This paper introduces a kernel-level framework leveraging extended Berkeley Packet Filter (eBPF) to…

Cryptography and Security · Computer Science 2025-03-05 Naveen Srinivasan , Nathan Naveen , Neil Naveen

The Software Supply Chain (SSC) security is a critical concern for both users and developers. Recent incidents, like the SolarWinds Orion compromise, proved the widespread impact resulting from the distribution of compromised software. The…

Cryptography and Security · Computer Science 2024-09-11 Giacomo Benedetti , Serena Cofano , Alessandro Brighente , Mauro Conti

Developers gain productivity by reusing readily available Free and Open Source Software (FOSS) components. Such practices also bring some difficulties, such as managing licensing, components and related security. One approach to handle…

Software Engineering · Computer Science 2025-03-20 Luıs Soeiro , Thomas Robert , Stefano Zacchiroli

In this paper we present attestable builds, a new paradigm to provide strong source-to-binary correspondence in software artifacts. We tackle the challenge of opaque build pipelines that disconnect the trust between source code, which can…

Cryptography and Security · Computer Science 2025-10-27 Daniel Hugenroth , Mario Lins , René Mayrhofer , Alastair Beresford

The software bill of materials (SBOM) concept aims to include more information about a software build such as copyrights, dependencies and security references. But SBOM lacks visibility into the process for building a package. Efforts such…

Software Engineering · Computer Science 2023-09-01 Dennis Volpano , Drew Malzahn , Andrew Pareles , Mark Thober

A vital problem in solving classification or regression problem is to apply feature engineering and variable selection on data before fed into models.One of a most popular feature engineering method is to discretisize continous variable…

Applications · Statistics 2020-09-23 Weijian Luo , Yongxian Long

The proliferation of Internet of Things (IoT) devices has introduced significant security challenges, primarily due to the opacity of firmware components and the complexity of supply chain dependencies. IoT firmware frequently relies on…

Cryptography and Security · Computer Science 2026-01-06 Abdurrahman Tolay

Neural networks have become integral to many fields due to their exceptional performance. The open-source community has witnessed a rapid influx of neural network (NN) repositories with fast-paced iterations, making it crucial for…

Software Engineering · Computer Science 2025-09-25 Xiaoning Ren , Yuhang Ye , Xiongfei Wu , Yueming Wu , Yinxing Xue

Reducing the cost of sequencing genomes provided by next-generation sequencing technologies has greatly increased the number of genomic projects. As a result, there is a growing need for better assembly and assembly validation methods. One…

Genomics · Quantitative Biology 2022-10-17 Przemysław Stawczyk , Robert Nowak

Adopting shared data resources requires scientists to place trust in the originators of the data. When shared data is later used in the development of artificial intelligence (AI) systems or machine learning (ML) models, the trust lineage…

Machine Learning · Computer Science 2021-05-14 Iain Barclay , Alun Preece , Ian Taylor , Swapna K. Radha , Jarek Nabrzyski

Building information modeling (BIM) is a major upheaval in construction industry. Although BIM advantages in construction management has been proved in many papers reviewed, there are still many limitations that inhibit organizations to use…

Computational Engineering, Finance, and Science · Computer Science 2019-06-07 Hosein Taghaddos , Ali Mashayekhi , Behnam Sherafat