AI SPERA announced on the 30th that it will introduce automatic SBOM generation and report output functions to its core product Criminal IP ASM through the SBOM (Software Bill of Materials) support project promoted by the Korea Internet & Security Agency (KISA).
The SBOM is a system that records and manages the libraries and open source components that make up software, acting like a bill of materials. With the recent announcement of the U.S. Cybersecurity Agency (CISA)'s draft SBOM minimum requirements and the passage of the European Union's Cyber Resilience Act (CRA), global supply chain security regulations are in full swing. This has heightened the need for domestic companies to accelerate the adoption of SBOM.
AI Spera was selected for the "SBOM-based Supply Chain Security Model Construction Support Project" sponsored by KISA in March. The company is currently developing automatic SBOM creation and management capabilities for its AI-based attack surface management solution, "Criminal IP ASM." This feature will leverage the global SBOM standards SPDX and CycloneDX to monitor the security status of external components in real time. The company aims to complete implementation within the year. This will establish a system for immediate response to vulnerabilities and proactively address regulatory changes necessary for global market entry.
In particular, Criminal IP ASM currently integrates with over 40 global security companies, including Cisco and Fortinet, and has established itself in overseas markets, signing contracts with government agencies in major countries such as the United States, Bermuda, Australia, and Spain. Therefore, the introduction of SBOM is essential to address global regulations.
AI Spera CEO Kang Byeong-tak said, “As a company that developed Korea’s first ASM and proved its performance on the global stage, we will use this KISA SBOM support project as an opportunity to expand into regions with strengthened regulations, such as the US and Europe.” He added, “Even after the project ends, we will continue to advance the SBOM tool and integrate automated processes to operate a system optimized for the customer environment, and further realize public value and establish ourselves as a company that leads global security trends.”
- See more related articles
You must be logged in to post a comment.