Short Paper: Software Bill of Materials Management for Embedded Vehicle Systems

Short Paper: Software Bill of Materials Management for Embedded Vehicle Systems

연구 분야: Analysis

학회: International Conference on Security and Privacy in Cyber-Physical Systems and Smart Vehicles

Modern vehicles are integral components of our daily lives, crucial for transportation and logistics. As such, ensuring cybersecurity in embedded vehicle systems is essential. Software Bills of Materials (SBOMs) are increasingly recognized as a valuable tool for enhancing software supply chain security. By providing transparency and traceability of software components, SBOMs facilitate the rapid identification and mitigation of vulnerabilities. Despite their benefits, implementing SBOMs for embedded vehicle systems presents unique challenges. This study investigates the challenges involved in the management of SBOMs for embedded vehicle systems, particularly focusing on a custom Yocto Linux distribution for a diagnostic platform in heavy-duty trucks. We highlight key issues and propose potential solutions. Our findings underscore the necessity for specialized tools and frameworks to effectively integrate SBOMs in embedded systems, thereby strengthening the cybersecurity posture of these critical systems.