Cloud Security

KSOC releases Kubernetes Bill of Materials

Kubernetes Security Operations Center announced that it has published a software bill of materials standard for Kubernetes, reports Cloud Native Now. According to the group, KBOM can be accessed using an open-source command line interface tool. Upon running it, users will be able to view the workload count, authentication, cost and type of hosting service, vulnerabilities for both internal and hosted images, service meshes, third-party customizations, and version details for the platform they are managing.Recognizing that Kubernetes environments undergo frequent changes, KSOC has made it so that the tool can be run as often as necessary. KBOM is the first SBOM made specifically for the Kubernetes application programming interface. The new KBOM is expected to help IT teams search for vulnerabilities and comply with regulatory requirements, including the Biden administrations new SBOM rule applicable to federal agencies. The increased focus on SBOMs comes as threat actors are increasingly targeting software components, injecting them with malware in anticipation of their being integrated with other applications down the line.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.