SYSTEMS AND PROCESSES FOR CREATING SOFTWARE BILL OF MATERIALS FOR LARGE DISTRIBUTED BUILDS

• Main Authors: SCHWERZLER, Nicholas Allan, BUSSELL, Frank Joseph, LYONS, Henry James, ROLF, Dale Russel, JANSON, David John, MCCARTY, Ian James, TRAN, Minh Trong, YARYAN, Thomas George, YERALAN, Sencer Nuri
• Format: Patent
• Language: English
• Published: 16.11.2023
• Subjects: CALCULATING; COMPUTING; COUNTING; ELECTRIC DIGITAL DATA PROCESSING; PHYSICS

Systems are provided for generating, modifying and using SBOMs for facilitating risk assessment and threat mitigation for corresponding programs, and particularly for large programming builds. The creation and modification of the SBOMs includes processes for omitting declarations referenced in chunk SBOMs of program chunks incorporated into a final programming build associated with a build SBOM, but which are not actually utilized by the final programming build, as well as processes for adding new declarations for code segments that are not declared in the related chunk SBOMs, even though the code segments are utilized by the final programming build. Systems are also configured to use SBOMs in combination with configuration restriction records to assess and resolve threat events in a manner that can prevent unnecessary remedial actions for threat events that appear to be relevant to one or more files or dependencies incorporated into a program.