Systems and processes for creating software bill of materials for large distributed builds

Assignee

• MICROSOFT TECHNOLOGY LICENSING, LLC · US

Inventors

• Frank J. Bussell · Issaquah, US
• Henry Lyons · Seattle, US
• Nicholas Allan Schwerzler · Sammamish, US
• Sencer Nuri Yeralan · Seattle, US
• Dale Russel Rolf · Renton, US
• Minh Trong Tran · Bellevue, US
• David John Janson · Kirkland, US
• Thomas George Yaryan · Seattle, US
• Ian James McCarty · Sammamish, US

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06F2221/033
• WIPO fieldComputer technology
• WIPO sectorElectrical engineering

Abstract

Systems are provided for generating, modifying and using SBOMs for facilitating risk assessment and threat mitigation for corresponding programs, and particularly for large programming builds. The creation and modification of the SBOMs includes processes for omitting declarations referenced in chunk SBOMs of program chunks incorporated into a final programming build associated with a build SBOM, but which are not actually utilized by the final programming build, as well as processes for adding new declarations for code segments that are not declared in the related chunk SBOMs, even though the code segments are utilized by the final programming build. Systems are also configured to use SBOMs in combination with configuration restriction records to assess and resolve threat events in a manner that can prevent unnecessary remedial actions for threat events that appear to be relevant to one or more files or dependencies incorporated into a program.