Loading…
December 17 - 18, 2019 | Tokyo, Japan
View More Details & Request an Invitation
Back To Schedule
Wednesday, December 18 • 14:40 - 15:00
Managing OSS Vulnerability with Software Component Catalogue, SW360 - Yosuke Yamada, Hitachi, Ltd

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Tweet Share
Hitachi develops and provides enterprise systems with a large amount of software including OSS, and the number of software used at Hitachi is increasing year by year. Additionally, software vulnerability is detected and reported quite often. Therefore, it is getting hard for Hitachi to continuously recognize vulnerabilities of all software components. SW360 is an OSS software that can manage software components in projects and can collect related vulnerability information, by using CVE security vulnerability information database. It can be used to continuously recognize and manage software vulnerabilities in each project. Currently, SW360 doesn’t have vulnerability notification function by email, so he is developing a tool for it. In this session, he will explain connection between Hitachi’s software component management database and SW360, configuration and usage of REST API of SW360.
Speakers
YY

Yosuke Yamada

Developer, Hitachi, Ltd
Yosuke Yamada is a software engineer at Hitachi, Ltd. He is a member of OSS software component management database team to accelerate compliance tasks in Hitachi. He is using Hitachi’s OSS software component management database for importing vulnerability information to SW360 and... Read More →

OpenComplianceSummit2019 yamada pdf
Wednesday December 18, 2019 14:40 - 15:00 JST
Conference Room 402N
  Conference Sessions
  • Session Slides Included Yes