Attending this event?
Back To Schedule
Tuesday, December 5 • 12:05 - 12:45
Introducing OpenChain Japan Community's SBOM Initiatives - Yumi Tomita, Cybertrust Japan Co., Ltd.; Norio Kobota, Sony Group Corporation; Taishi Yoneshima, NEC Corporation

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

The OpenChain Project Japan WG holds regular meetings to explore Software Bill of Materials (SBOM). Our focus is on practical adoption and use of SBOM both from a community and corporate perspective, and our scope is global usage in the supply chain. The meetings have already resulted in tangible outcomes like SPDX Lite for SPDX2.3 in Appendix G, and we continue to develop practical material to guide and support SBOM use. ​ This session consists of three parts: the trend of SBOM in Japan, our contribution to the SPDX3.0, and our expectation about future spread of SBOMs in Japan. First, we will introduce the importance of SBOM for the software supply chain secuirty and its activities in Japan. Second, We will demonstrate the material to understand the SPDX3.0. Because the specification is significantly diffirent than previous versions, we are worried that it will take a lot of time for users to catch up with the specification. In addition, we will explain our contribution and how we are encouraging stakeholders to contribute to it. Finally, we summarize how our stakeholders see SPDX operating in Japan moving forward, and provide insight into how interested parties around the world can learn from our experience. Attendees of this session will be able to overview the SBOM activities in Japan, and deepen their knowledge about the SPDX3.0 specification and the benefits by SPDX3.0.

avatar for Norio Kobota

Norio Kobota

Alliance Manager, Sony Group Corporation
Norio Kobota is an alliance manager in Sony Group Corporation. He is the chair of Open Source Software License Committee in Sony and works to improve OSS compliance and relationships with OSS communities.He represents Sony as a board member of OpenChain Project. And he is participating... Read More →
avatar for Yumi Tomita

Yumi Tomita

Product Marketing Manager, Cybertrust Japan Co., Ltd.
Yumi Tomita is a Product Marketing Manager in Cybertrust Japan. She works to utilize SBOM for vulnerability management. She is a member of the OpenChain Project Japan Working Group.
avatar for Taishi Yoneshima

Taishi Yoneshima

Assistant Manager, NEC Corporation
He belongs to OSPO of NEC, where promotes OSS utilization in his company and related risk mitigation, develops solutions related to SBOM and OSS security, and makes proposals for secure utilization of OSS. He is a leader of the Bird's Eye View WG of the Japan OSS Promotion Forum... Read More →

Tuesday December 5, 2023 12:05 - 12:45 JST
Hall B-1
Feedback form isn't open yet.