Manufacturing Bill of Materials (MBOM)

 

I'm a circle
Software Bill of Materials
Software-as-a-Service BOM
Vulnerability Exploitability Exchange
Manufacturing Bill of Materials
Operations Bill of Materials
Bill of Vulnerabilities
Javascript Object Notation
Extensible Markup Language
Protocol Buffers

CycloneDX supports many types of components, including hardware devices, making it ideal for use with consumer electronics, IoT, ICS, and other types of embedded devices. CycloneDX fills an important role in-between traditional eBOM and mBOM use cases for hardware devices.

  • Supports device as a first-class component type
  • Utilizes a formal and extensible taxonomy that defines a wide range of hardware devices and configurations

CycloneDX can represent any type of software component, service, and the firmware and hardware devices in an ‘as-built’ product. A formal property taxonomy can be leveraged and extended to describe any type of hardware attribute or configuration. CycloneDX can also reference documentation that may describe the ‘recipe’ for how the product is manufactured.
Organizations, or entire industries, can also leverage multiple extension points to develop advanced models.

High-Level Object Model

CycloneDX Object Model Swimlane

Examples

BOMs demonstrating MBOM capabilities can be found at https://github.com/CycloneDX/sbom-examples

CycloneDX Supporters