South Korea's Sparrow Proposes SBOM Operation and Management Strategies at Supply Chain Security Seminar

2026-06-26 14:05

Favorite

en.Wedoany.com Reported - Application security company Sparrow (CEO Jang Il-soo) introduced software (SW) bill of materials (SBOM) operation and management strategies for SW supply chain security at the "2026 Supply Chain Security Seminar."

At the '2026 Supply Chain Security Seminar' held at the aT Center in Yangjae, Seoul on the 25th, Sparrow CTO Yoon Jong-won presented on the topic 'SBOM Distribution Platform Required for SW Supply Chain Security.' (Photo: Sparrow)

Hosted by the Supply Chain Security Research Group under the Korea Institute of Information Security and Cryptology (KIISC), the seminar aimed to share domestic and international supply chain security policies, technology trends, and industry cases. It was held from the 24th to the 25th at the Grand Hall of the aT Center in Yangjae, Seoul.

Sparrow Chief Technology Officer (CTO) Yoon Jong-won delivered a presentation titled "SBOM Distribution Platform for SW Supply Chain Security" during the "SW Supply Chain Security Solutions" session. Yoon analyzed global security regulations such as the U.S. Executive Order "EO 14028" and the EU Cyber Resilience Act (CRA) and their implications, suggesting that South Korea should establish a response system in advance to keep pace with this trend.

Yoon emphasized that SBOM must go through a six-stage lifecycle—generation, enhancement, verification, sharing, review, and management—to ensure effectiveness, and highlighted the importance of building an SBOM operation system that ensures both transparency and trustworthiness. He proposed the "SBOM Distribution Platform" as a solution, which visualizes the SBOM distribution path between demand and supply organizations and enables threat response based on SBOM when vulnerabilities arise.

Supply organizations can upload generated SBOMs via the SBOM Distribution Platform and ensure integrity by adding digital signatures. Demand organizations can verify whether the content has been tampered with through signature verification. The platform shares materials only with necessary parties through permission-based access control, manages history, and monitors vulnerabilities appearing in components, thereby improving response speed.

Sparrow CEO Jang Il-soo stated that for building a trustworthy SW supply chain security system, distribution and sustainable operation after SBOM are crucial; Sparrow will go beyond vulnerability detection to provide an optimal environment that ensures supply chain visibility and manages threats based on SBOM.

At this supply chain security seminar, the SW supply chain security roadmap being promoted by the Ministry of Science and ICT and the National Intelligence Service for full institutionalization by 2027 was also introduced.

This article is compiled by Wedoany. All AI citations must indicate the source as "Wedoany". If there is any infringement or other issues, please notify us promptly, and we will modify or delete it accordingly. Email: news@wedoany.com