From SBOM to Zero CVE: Insights on Supply Chain Security from a Software Development Perspective

4/17 (Thu.) 10:15 - 10:45 7F 701G

From SBOM to Zero CVE: Insights on Supply Chain Security from a Software Development Perspective

As SBOM (Software Bill of Materials) becomes an essential component of software supply chain security management, leveraging it for vulnerability management presents new challenges. This session will explore the applicability of Zero CVE as a security standard, analyze why adopting such a strategy is crucial despite its limitations, and share practical insights on balancing security requirements with real-world supply chain constraints in software development.

SPEAKER

Fiona Cheng

WebComm Technology Co., Ltd.

Senior Product Manager

TOPIC / TRACK
Supply Chain Security Forum

LOCATION
Taipei Nangang Exhibition Center, Hall 2
7F 701G

LEVEL
Intermediate Intermediate sessions focus on cybersecurity architecture, tools, and practical applications, ideal for professionals with a basic understanding of cybersecurity.

SESSION TYPE
Breakout Session

LANGUAGE
Chinese

SUBTOPIC
Software Supply Chain

More Session

Cybersecurity Challenges in Digital Transformation: Business Needs and Talent Opportunities

Elmo Hsiao / Digicentre Cybersecurity Assistant Manager

The Ticking Time Bomb of Infrequent Pentesting

Lydia Zhang / Ridge Security President & Co-Founder

Chandler Hsieh / Kaspersky Lab Taiwan Technical Director

Asia Pacific Digital Identity Consortium

Henry Hang / Turing Space Co-founder & CTO

Mari Ishikawa / Asia Pasific Digital Identity Consortium Ambassador