Abstract

With the development of the information technology industry and the expansion of software development requirements, the scale and complexity of software are increasing, which makes the software development process turn into a software supply chain with superior or subordinate relationships. However, due to the inherent fragility of the software supply chain and the uneven quality of third-party open-source software, accidents occur frequently, and the security of the software supply chain has received extensive attention. We first figure out the security risks faced by the software supply chain and then innovatively proposes a software supply chain management system based on blockchain. To the best of our knowledge, this is the first blockchain-based software supply chain management system. The transfer processes of all third-party components or software products in the system are permanently recorded in the distributed ledger through smart contracts, which become the basis when handling and tracking software supply chain security incidents.

Full Text
Paper version not known

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call