Manufacturing Bill of Materials (MBOM)
Software Bill of Materials
Vulnerability Exploitability Exchange
Manufacturing Bill of Materials
Operations Bill of Materials
Bill of Vulnerabilities
Extensible Markup Language
CycloneDX supports many types of components, including hardware devices, making it ideal for use with consumer electronics, IoT, ICS, and other types of embedded devices. CycloneDX fills an important role in-between traditional eBOM and mBOM use cases for hardware devices.
deviceas a first-class component type
- Utilizes a formal and extensible taxonomy that defines a wide range of hardware devices and configurations
CycloneDX can represent any type of software component, service, and the firmware and hardware devices in an ‘as-built’
product. A formal property taxonomy can be leveraged and extended to describe any type of hardware attribute or configuration.
CycloneDX can also reference documentation that may describe the ‘recipe’ for how the product is manufactured.
Organizations, or entire industries, can also leverage multiple extension points to develop advanced models.
High-Level Object Model
BOMs demonstrating MBOM capabilities can be found at https://github.com/CycloneDX/sbom-examples