Software Identification
Multiple standards exist that try to approach the problem of software indentification and common platform enumeration.
- CPE - Common Platform Enumeration - CPE is a structured naming scheme for information technology systems, software, and packages.
- SWID - Software Identification Tagging - A scheme that assigns unique ID to each software component.
- SPDX - The Software Package Data Exchange - open standard for expression of software components and their metadata
- CycloneDX - OWASP Project - OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reduction.
- PURL - Package URL - Community Effort to generate stable package identifiers
info alert: This article is a stub.
Last modification was made about 1 year ago.