aDolus SBOM Creation / FACT Platform

aDolus SBOM Creation is a feature of the FACT Platform that automates the generation of Software Bills of Materials (SBOMs) for software packages. An SBOM is a formal, nested inventory of components used in building software, designed to support supply chain risk management by enabling tracking of known and emerging vulnerabilities. Key capabilities include: - One-click generation of NTIA-compliant SBOMs, reducing the manual effort and errors associated with compiling component inventories by hand - Ability to derive SBOMs from compiled binaries and legacy software where source code is no longer available - Support for three NTIA-recognized SBOM formats: SPDX (JSON v2.3 and Tag/Value v2.2), CycloneDX (v1.4), and SWID The platform addresses regulatory compliance requirements, including U.S. Executive Order 14028, which mandates SBOMs from suppliers of critical software to government agencies, as well as industry-specific regulations such as NERC CIP-013 (power utility) and FDA-2018-D-3443 (medical devices). CISA (Cybersecurity and Infrastructure Security Agency) currently oversees the advancement and operationalization of SBOM standards. The tool is intended for both software vendors who need to provide SBOMs to customers or regulators, and for asset owners who need visibility into the software components they operate.