The Supply Chain Integrity, Transparency, and Trust (SCITT) WG will define a set of interoperable building blocks that will allow implementers to build integrity and accountability into software supply chain systems to help assure trustworthy operation. For example, a public computer interface system could report its software composition that can then be compared against known software compositions or certifications for such a device thereby giving confidence that the system is running the software expected and has not been modified, either by attack or accident, in the supply chain.
ietf-wg-scitt
Supply Chain Integrity, Transparency, and Trust (scitt)
Pinned
Repositories
Showing 5 of 5 repositories
- draft-ietf-scitt-architecture Public
An Architecture for Trustworthy Digital Supply Chain Transparency Services
-
-
