With over 10,000 GitHub accounts attacked and malicious code in open-source software, who can you trust anymore? It is therefore important to understand the life cycle of SDD components and to secure them appropriately using a wide variety of methods. The presentation will illustrate the interlocking of different processes, such as SBOM, CVE, supply chain, hardware components, production lines, etc., in order to ensure a secure life cycle for all components involved in SDD.
