Top Five Challenges in Software Supply Chain Security: Observations From 30 Industry and Government Organizations
William Enck, Laurie Williams
Abstract
Software is complex, not only due to the code within a given project, but also due to the vast ecosystem of dependencies and transitive dependencies upon which each project relies. Recent years have observed a sharp uptick of attacks on the software supply chain spurring invigorated interest by industry and government alike. We held three summits with a diverse set of organizations and report on the top five challenges in software supply chain security.
Topics & Concepts
Supply chainSoftwareGovernment (linguistics)BusinessIndustrial organizationComputer scienceMarketingProgramming languagePhilosophyLinguisticsInformation and Cyber SecurityAdvanced Malware Detection TechniquesSoftware Reliability and Analysis Research