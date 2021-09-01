LOS ALTOS, Calif., Sept. 1, 2021 /PRNewswire/ -- Contrast Security, a leader in modernizing application security, today announced it enables organizations to make the software bill of materials (SBoM) mandate a reality. By leveraging its influence in the market and relationship with the National Institute of Standards and Technology (NIST), Contrast — and its Application Security Platform — directly supports the majority of the goals of President Joe Biden's executive order to improve the nation's cybersecurity. Application security is arguably the most critical priority in the executive order, and preparing for stricter guidelines and higher levels of security in applications and the broader software supply chain should begin today.

Application security is the most critical priority within the executive order, and Contrast leads the charge for software supply chain transparency via the generation of SBoM

In the fallout of a successful ransomware attack on a pipeline that supplies nearly half the East Coast's gasoline, the executive order places strict new standards on the cybersecurity of any software sold to federal agencies. It should be no surprise that improvements to application security are a recurring topic throughout the executive order's various sections. Specifically, President Biden calls for greater software supply chain transparency via SBoM, which removes the need to assess procured software source code.

Third-party software presents a variety of organizational risks that must be managed. For instance, some third-party libraries use risky licenses that could require an organization to open-source an entire application. In response, application security teams need an automated means to baseline their open-source security (OSS) posture while legal and compliance teams track licensing risk by building an SBoM that scales with their application portfolio.

"Contrast invented an entirely new technology to analyze the security of libraries with the full context of the application that uses them," said Jeff Williams, CTO and co-founder at Contrast Security. "We built Contrast OSS, the first product to embed software composition analysis (SCA) and open-source security within an application. This approach makes Contrast the only product that delivers SCA in real time, continuously and accurately, across an entire application and API portfolio."