LSEC supports existing and new ideas on how to deal with ICT – OT- / cyber security challenges. LSEC develops industrial collaborations; creates programs, supports industry initiatives that unite security stakeholders and participates in research projects funded by the European Commission, Member States, Regions and other stakeholders.
Supply Chain Security : IIoTSBOM – Software Bill of Materials project
According to different research organisations CyberSecurity challenges are continuously increasing, despite major authority interventions and different measures being taken in an atempt to fight the perpetrators and criminals behind them. A recent report on the continuous study by Blackfog showed the continued increase in ransomware attacks and the increased success of attacks resulting into major incidents throughout the world. Different sectors and industries are being impacted, none the least in Europe and in industrial sectors, healthcare and utilities. But all sectors impacted are digitizing at a vast pace, utilizing devices and equipment which are being connected. While this trend is encouraging for organisational efficiency, the systems used and underlying technologies should become more resilient against potential vulnerabilities that can be exploited and attacked.
IIoTSBOM aims to support end user organisations, machine and device manufacturers to further improve their security measures by supporting them with valuable knowledge and expertise in specific innovative cybersecurity means for Industrial IoT and IoT and by introducing the Software and Security Bill of Materials (SBOM).
In a collaboration with the CyberSecurity and Infrastructure Security Agency (CISA) of the US government, LSEC – Leaders In Security, KU Leuven COSIC and Flanders Make have launched the initiative in Flanders to ensure awareness and adoption of the Software Bill of Materials initiatives. On May 12th, the Whitehouse by means of an executive order decided on the further improvement of the CyberSecurity infrastructures also focusing on the supply chain by means of the Software Bill of Materials.
Next to technical measures for improvements of CyberSecurity in the software and devices, the Software and Security Bill of Materials aims to support companies developing devices to create a ledger about the software on the equipment, providing more transparency about the technologies being used and their respective versioning. This allows both vendor, system integrator and the final end user and their operators to get a better grip on the equipment they are procuring and need to operationalizer over time.
Earlier successes in this approach have been proven in the healthcare and automotive domains and will be demonstrated throughout the activities of the IIoTSBOM project.
The IIoTSBOM project will promote the available technical and CyberSecurity expertise to a broad group of target audiences and aims to facilitate the use of SBOMs for device manfucturing by supporting end users in their procurement; device and equipment manufacturers in their product lifecycle management for CyberSecurity and CyberSecurity innovators in developing tools and technologies improving CyberSecurity and the SBOM-proces.
The resulting effect will be a better CyberSecurity Posture of the whole society.
December 13th, 2022 IIoTSBOM organized an annual update seminar in The Beacon in Antwerp. For more information and background you can also still visit the online kick-off meeting with a focus on CyberSecurity challenges for industry, for manufacturing and how CyberSecurity methods and solutions can help both end users and device manufacturers improving on the security for a more secure supply chain. On a monthly basis, IIoTSBOM will be organizing use case and technology webinars and quarterly in person seminars. For more information and the agenda, please visit the events page and go to the developing IIoTSBOM.com website.
Participating is free, after using the following registration link
For more information, contact us at iiotsbom at lsec.eu, or call directly at +32 16 79 8585.
Are you planning or developing an innovative security innovation project and looking for partners to assist you, to build the project, or to support the project, as experts, end users or government interests? Feel free to reach out to LSEC. More than 800 companies are connected, and can be contacted through the network