#Japan #Tokyo #Cyber Resilience #Hitachi Solutions #SBOM Management

Hitachi Solutions Unveils Advanced SBOM Management System

In response to the escalating cyber threats and increasing regulations, Hitachi Solutions, headquartered in Shinagawa, Tokyo, has announced the launch of its new Software Bill of Materials (SBOM) management system on June 24. This system is designed to continuously manage the security risks associated with the software supply chain, enhancing vulnerability management in today's complex digital environment.

As artificial intelligence technologies evolve, previously unrecognized vulnerabilities are coming to light, pushing companies to enhance their cyber resilience capabilities. The new SBOM management system aims to address the dual challenges of complying with the Cyber Resilience Act (CRA) and the ongoing need for software configuration oversight and vulnerability management, which currently still relies heavily on manual processes, creating significant operational burdens.

Key Features of the SBOM Management System

1. Secure Data Management: The system allows companies, including those in manufacturing with stringent information management requirements, to safely manage sensitive SBOM data. It supports both Japanese and English, facilitating cross-divisional use in global organizations.

2. Automated Identifier Assignment: By automatically assigning identifiers (such as CPE), the system effectively links software and vulnerability information, streamlining the previously manual vulnerability verification processes. This innovation minimizes oversight and promotes continuous risk assessment, aiding rapid decision-making.

3. Continuous Monitoring: The system monitors vulnerability databases, providing automatic notifications when new identifiers indicate potential impacts. This enables early detection of new risks across existing assets, supporting not just open-source software (OSS) but also Commercial Off-The-Shelf products (COTS) and proprietary software.

4. Integration with Security Tools: By integrating with security management tools and IT service management platforms, the system enhances the prioritization and progress management of responses upon detecting vulnerabilities. It centralizes the PSIRT’s response history, promoting visibility and strengthening governance.

5. International Standards Contribution: Hitachi Solutions plays a leading role in supporting SBOM operations through contributions to the OWASP Foundation and the SPDX project under the Linux Foundation, providing technologies and insights critical to the advancement of international standards.

The Importance of SBOM in Today's Landscape

As software complexity and supply chain intricacies grow, AI advancements are uncovering vulnerabilities that were previously unknown. Effective vulnerability management using SBOM has become increasingly vital for ensuring product and service safety across industries and regions. With the tightening of regulations and guidelines globally, alongside sophisticated cyberattacks, it has become imperative for companies to establish frameworks that can continuously and effectively manage their SBOMs.

Additionally, the varying formats of SBOMs generated by different tools and providers pose challenges in identifier management and vulnerability scrutiny, leading to increased workloads that hinder sustained operational activities. Consequently, businesses cautious about cloud adoption face difficulties in managing SBOMs that often contain sensitive design information, creating a pressing need for robust systems that can safely manage and continually operate SBOMs across domestic and international locations.

Hitachi Solutions: A Trusted Partner

Hitachi Solutions has established itself as an expert in SBOM utilization and vulnerability management, contributing to the development of OSS guidelines within the Hitachi Group and participating in projects with Japan's Ministry of Economy, Trade and Industry. Drawing on these experiences and accumulated knowledge, the company has developed the SBOM management system to empower organizations in their ongoing vulnerability responses while supporting the establishment of PSIRT frameworks.

Collaborating Tools

• - Dependency-Track: An OWASP security management tool.
• - Jira Service Management: An ITSM tool from Atlassian Pty Ltd.
• - ServiceNow: An integrated IT service operation management platform by ServiceNow, Inc.

For detailed information about Hitachi Solutions and this innovative SBOM management system, please visit Hitachi Solutions.

Conclusion

Hitachi Solutions is dedicated to fostering a secure, sustainable, and comfortable society by delivering cutting-edge digital technology solutions through collaboration with customers. By reinforcing security governance, especially for Japanese companies operating globally, the newly launched SBOM management system plays an essential role in helping organizations effectively navigate the challenges posed by evolving cyber threats and regulatory frameworks.