In the field of cybersecurity, a new solution from Keysight Technologies has been introduced. The Keysight SBOM Manager is designed to assist organisations in meeting global cybersecurity and software transparency requirements. Guided in part by frameworks such as the European Union’s Cyber Resilience Act (CRA), this solution provides a unified approach to generating, managing, and using Software Bill of Materials (SBOMs) across the lifecycle of digital products.
The evolving cybersecurity regulatory landscape highlights the need for manufacturers to understand, manage, and disclose the components within their digital products, including software and firmware. With regulations such as the EU CRA, the U.S. Executive Order 14028, and other emerging frameworks, SBOMs are becoming a requirement for market access, compliance, and supporting customer trust.
Keysight SBOM Manager is designed to address these requirements by providing detailed visibility into digital products. By analysing software elements such as binary software, firmware, and containers, the solution helps identify and filter vulnerabilities, allowing organisations to focus on relevant risks rather than raw data. The integration of Vulnerability Exploitability eXchange (VEX) supports this approach.
The solution also enables the secure sharing of SBOMs and related vulnerability information through role-based access and tracking. It is designed to support alignment with evolving regulatory standards, while helping SBOM consumers understand the digital assets in use and connect transparency with operational environments.
With the upcoming enforcement of the EU CRA, along with similar requirements in the U.S. and parts of Asia, organisations may face penalties, recalls, or restricted market access if they do not comply. In this context, SBOM Manager provides capabilities for SBOM generation, ongoing vulnerability tracking, and controlled information sharing.
Overall, Keysight SBOM Manager offers a unified approach to supporting regulatory alignment, improving vulnerability management, and increasing transparency within digital supply chains.
