Community Conversations, episode 3

In conversation with Kate Stewart, we discuss the Software Bill of Materials, where it stands, and what the future holds.

In conversation with NTIA, we discuss the organization, where it stands, and what the future holds.

Welcome back to Community Podcasts, a Kaspersky Transatlantic Cable podcast miniseries. As always, my cohost for this series is Anastasiya Kazakova, a Senior Public Affairs manager who coordinates global cyber diplomacy projects at Kaspersky.

As a reminder, the Community Podcasts is a short series of podcasts featuring frank cyber diplomacy conversations with cyber heroes who unite people, building communities to work together for the common good despite growing fragmentation, confrontation, cyber threats, and more. Why are they doing this? And how are their efforts going?

For our third episode, Kate Stewart, a co-chair of one of the working groups within the National Telecommunications and Information Administration’s cybersecurity multistakeholder process for software component transparency, joins us. NTIA has years of experience in conducting open, multistakeholder processes to help make progress on issues such as finding common ground on cybersecurity vulnerability disclosure, developing clear policy guidance on the secure update of IoT devices, and providing more transparency about data collected by mobile apps. Today we’re focusing on this multistakeholder process for a Software Bill of Materials (SBOM) or software component transparency.

During our extended conversation, we discuss a wide array of topics, including on how the SBOM is getting more attention in the industry across borders, what challenges still exist in implementing SBOM and how Kate and other co-chairs as well as members of the working groups are continuously making this multistakeholder process a success.