Pod Engine
Podcast thumbnail for daBOM

daBOM

Claim This Podcast

by DJ Schleen

19 episodes
Updated Daily
Accepts GuestsHas SponsorsLocation 🇺🇸

Podcast Overview

Wondering what all the hype about Software Bill of Materials or SBOMs is? They’ve become a regular talking point when discussing the composition of software, and if you haven’t heard of them yet, you surely will soon. Join DJ Schleen as he interviews experts who shed light on what Software Bill of Materials are, how they are used by organizations to exchange information on software composition, and the effect they will have on consumers of software from large organizations to government agencies. We’ll dig into how SBOMs enable consumers to identify security vulnerabilities and explore the ever expanding world of Bill of Materials formats to provide you with the knowledge you need for an emerging industry concept. (edited)

Language

🇺🇲

Publishing Since

3/29/2023

Visit WebsiteAppleView on Apple PodcastsRSS Feed

Reach the team behind daBOM

Verified contact details for this show aren't on file yet — sign up to get notified when they land.

Sign up for updates

Recent Episodes

Episode thumbnail for Lauren Hanford on Add TACOS to your SBOM Combo Platter

August 9, 2023

Lauren Hanford on Add TACOS to your SBOM Combo Platter

<p>Remember the X-Files television show? Dana Scully was one of the main characters - a brilliant FBI agent who worked on unsolved cases involving paranormal phenomena. Often skeptical of the supernatural, she was always willing to keep an open mind, and she was also a great role model.&nbsp;</p><p>She inspired many women in Technology, one of them being Lauren Hanford. Scully’s inspiration led Lauren into the field of Criminal Justice and Chemistry, and then she made a pivot into Computer Science, and Design. The catalyst being a desire to make doing homework easier.&nbsp;&nbsp;</p><p><br></p><p>It’s funny how technology always finds us.&nbsp;</p><p><br></p><p>Lauren has been a part of the open source community for years, and has a massive understanding of the space.</p><p><br></p><p>Recently, she brought the TACOS framework (Trusted Attestation and Compliance for Open Source) to the community to help assess the secure development practices of open source software. It’s a perfect companion to a software bill of materials.&nbsp;</p><p><br></p><p>…and the name? It’s a nod to GUAC and to SLSA.&nbsp;&nbsp;</p><p><br></p><p>Welcome back, to daBOM</p>

Episode thumbnail for Hasan Yasar on The Multiverse of SBOM Phases

August 2, 2023

Hasan Yasar on The Multiverse of SBOM Phases

<p>There's no better way to get to know someone than staying awake for 24 hours straight while moderating sessions of the world's biggest virtual DevOps conference - All Day DevOps. It's One of the many times I've gotten to spend with Hasan Yasar over the years.&nbsp;</p><p>We were hunkered down in an office in Tyson's Corner, just outside of Washington, DC, broadcasting throughout the day to an audience spanning the world, introducing some of the world's most talented minds before they shared their stories.</p><p>Hassan and I met back in 2017 when we were both speaking at DevOps Connect at RSA, and I was floored at the wealth of knowledge he had about DevSecOps. He's done the research, knows the practice, and has the mind of an architect.&nbsp;</p><p>Hassan isn't only a speaker in the community, though, he's also an organizer of events such as DevSecOps Days Istanbul, DevSecOps Days Tokyo, and one very memorable panel I was on at an event hosted by the Software Engineering Institute at Carnegie Mellon University. Hassan placed me on a panel beside Brigadier General Greg Tohill in front of an audience of military personnel to discuss DevSecOps.&nbsp;</p><p>I will never forget fielding a question with General Tohill from a member of the Air Force. They asked "how do you fail fast with a ballistic missile?"&nbsp;</p><p>" You better have some good simulators."</p><p>When Hassan and I caught up again at the RSA conference this year, our conversation turned to the topic of Software Bill of Materials and how they fit into the SDLC.&nbsp;</p><p>... and then Hassan started talking about how we could shift them extremely far left...&nbsp;</p><p>Welcome back, to daBOM.</p>

Episode thumbnail for Trac Bannon on the connection between Generative AI, LLM and SBOMs

July 19, 2023

Trac Bannon on the connection between Generative AI, LLM and SBOMs

<p>I'll never forget the day I met Tracy, although I really think we were actually separated at birth. We were scheduled to be on a podcast together and after introducing ourselves to each other in the call lobby, we began a discussion that most likely would've gone on forever at the host, not interrupted us to get the show started.</p><p>It turns out we both have similar passions in the DevOps, DevSecOps, and SRE spaces, and not just philosophical ideas and hoopla high fives. We've actually done it. Practical implementation of ideas that have injected security into the software we all develop.&nbsp;</p><p>An architect, a programmer, a dreamer, and a visionary, she's also a strong advocate for diversity and inclusion in the technology industry, and has often shared her experiences about being a woman in technology.&nbsp;</p><p>Two topics that are very close to my heart as well...&nbsp;</p><p>Earlier this year, Tracy and I were brought together by Mark Miller for "It's 5:05", a podcast produced by The Sourced Network that brings snack sized news about open source and security topics to the masses on a daily basis.</p><p>From the seeds of "It's 5:05" came the opportunity for me to create this podcast. And also for Tracy to create a podcast called "Real Technologists". And if you haven't heard it, you need to. It's a brilliantly done production about the people "behind the technology".&nbsp;</p><p>And speaking of real technologists, Tracy is one of them.</p><p>Welcome back, to daBOM.</p>

19 total episodes available

Deep-dive analytics for daBOM

Sign up to explore

Frequently asked questions

Have a different question and can't find the answer you're looking for? Reach out to our support team by sending us an email and we'll get back to you as soon as we can.

What is daBOM?

Wondering what all the hype about Software Bill of Materials or SBOMs is? They’ve become a regular talking point when discussing the composition of software, and if you haven’t heard of them yet, you surely will soon.

Join DJ Schleen as he interviews experts who shed light on what Software Bill of Materials are, how they are used by organizations to exchange information on software composition, and the effect they will have on consumers of software from large organizations to government agencies. We’ll dig into how SBOMs enable consumers to identify security vulnerabilities and explore the ever expanding world of Bill of Materials formats to provide you with the knowledge you need for an emerging industry concept. (edited)

How often does this podcast release new episodes?

This podcast updates daily.

Where can I listen to this podcast?

This podcast is available on 4 platforms including Apple Podcasts, Spotify, and more. You can also use the RSS feed directly.

Does this podcast accept guests?

Yes, this podcast regularly features guests.

Legal Disclaimer

Pod Engine is not affiliated with, endorsed by, or officially connected with any of the podcasts displayed on this platform. We operate independently as a podcast discovery and analytics service.

All podcast artwork, thumbnails, and content displayed on this page are the property of their respective owners and are protected by applicable copyright laws. This includes, but is not limited to, podcast cover art, episode artwork, show descriptions, episode titles, transcripts, audio snippets, and any other content originating from the podcast creators or their licensors.

We display this content under fair use principles and/or implied license for the purpose of podcast discovery, information, and commentary. We make no claim of ownership over any podcast content, artwork, or related materials shown on this platform. All trademarks, service marks, and trade names are the property of their respective owners.

While we strive to ensure all content usage is properly authorized, if you are a rights holder and believe your content is being used inappropriately or without proper authorization, please contact us immediately at hey@podengine.ai for prompt review and appropriate action, which may include content removal or proper attribution.

By accessing and using this platform, you acknowledge and agree to respect all applicable copyright laws and intellectual property rights of content owners. Any unauthorized reproduction, distribution, or commercial use of the content displayed on this platform is strictly prohibited.