Integrating SBOM in Socio-Technical Threat and Risk Modeling of the Software Supply Chain. – Nordic Software Security Summit

Stewart Kowalski

Stewart Kowalski, NTNU, RI.SE

The socio-technical modelling approach can be used to identify and document both technical and social threats and risks in the software suppliers chains. In this presentation we will outline how a software bill of materials (SBOM) can be integrated into the socio-technical security supply chain security analysis both from a theorical and a practical perspective.

Explore the conference agenda

Thursday Track 1

Thursday Track 2

Friday Track 2

Open Source Security Foundation

OWASP Foundation

Open regulatory compliance working group (ORCWG.ORG)

Register today!

One day training and two day conference covering the coming legislation on the software industry

October 1-3, 2025

Hotel Birger Jarl, Stockholm, Sweden

Early bird pricing to Aug 1st!

Follow us on LinkedIn !

Conference Agenda
Overview
Wednesday: Workshops
Thursday track one
Thursday track two
Friday track one
Friday track two

Partners 2025
Cybernode.se
Dataföreningen Väst
NCC-SE
Eclipse Foundation
ORCWG
OpenSSF
OWASP
SIG Security

News