Software Supply-Chain Security: Issues and Countermeasures

被引:1
|
作者
Hammi, Badis [1 ]
Zeadally, Sherali [2 ]
机构
[1] EPITA, Engn Sch, F-94276 Paris, France
[2] Univ Kentucky, Coll Commun & Informat, Lexington, KY 40506 USA
来源
COMPUTER | 2023年 / 56卷 / 07期
关键词
Supply chains; Organizations; Software; Computer security; Resilience;
D O I
10.1109/MC.2023.3273491
中图分类号
TP3 [计算技术、计算机技术];
学科分类号
0812 ;
摘要
Software application development involves various actors and organizations in what is called the software supply chain. We discuss how we can achieve strong resilience of the software supply chain to cyberthreats and then propose a holistic end-to-end security approach for the software supply chain.
引用
收藏
页码:54 / 66
页数:13
相关论文
共 50 条
  • [1] Supply-Chain Risk Management: Incorporating Security into Software Development
    Ellison, Robert J.
    Woody, Carol
    [J]. 43RD HAWAII INTERNATIONAL CONFERENCE ON SYSTEMS SCIENCES VOLS 1-5 (HICSS 2010), 2010, : 4433 - 4442
  • [2] Supply-Chain Security for Cyberinfrastructure
    Forte, Domenic
    Perez, Ron
    Kim, Yongdae
    Bhunia, Swarup
    [J]. COMPUTER, 2016, 49 (08) : 12 - 16
  • [3] Struggling With Supply-Chain Security
    Viega, John
    Michael, James Bret
    [J]. COMPUTER, 2021, 54 (07) : 98 - 104
  • [4] Software tool facilitates supply-chain interaction
    不详
    [J]. AVIATION WEEK & SPACE TECHNOLOGY, 2002, 156 (02): : 437 - 438
  • [5] OSS Supply-chain Security: What Will It Take?
    Kaczorowski M.
    Momot F.
    Neville-Neil G.V.
    McCubbin C.
    [J]. Queue, 2022, 20 (05): : 86 - 102
  • [6] Supply-Chain Security of Digital Microfluidic Biochips
    Ali, Sk Subidh
    Ibrahim, Mohamed
    Rajendran, Jeyavijayan
    Sinanoglu, Ozgur
    Chakrabarty, Krishnendu
    [J]. COMPUTER, 2016, 49 (08) : 36 - 43
  • [7] Supply-chain issues compound research slowdowns
    不详
    [J]. PHYSICS TODAY, 2022, 75 (02) : 20 - 22
  • [8] Software Supply Chain Security
    Massacci, Fabio
    Williams, Laurie
    [J]. IEEE SECURITY & PRIVACY, 2023, 21 (06) : 8 - 10
  • [9] Supply-chain dynamics, environmental issues, and manufacturing firms
    Hill, KE
    [J]. ENVIRONMENT AND PLANNING A, 1997, 29 (07) : 1257 - 1274
  • [10] RFID technologies: Supply-chain applications and implementation issues
    Angeles, R
    [J]. INFORMATION SYSTEMS MANAGEMENT, 2005, 22 (01) : 51 - 65
12345