SIH2023_CodeBreachers_PPT_GSMCOEJJKKJ.pdf

yetar41947 11 views 4 slides Oct 04, 2024

Slide 1 of 4

About This Presentation

Smart India Hackathon 2023 PPT

Size: 310.91 KB

Language: en

Added: Oct 04, 2024

Slides: 4 pages

Slide Content

Basic Details of the Team and
Problem Statement
Ministry/Organization Name/Student Innovation : National
Technical Research Organisation,(NTRO)
PS Code : SIH1449
Problem Statement Title : Design, develop and implement a
software bill of materials (SBOM) generation tool that can
generate the complete SBOM of custom-developed software
(including in-house developments by organisations)
Team Name : CodeBreachers
Team Leader Name : Aniket Warule
Institute Code (AISHE) : C-41744
Institute Name : Genba Sopanrao Moze Trusts College of
Engineering
Theme Name:Smart Automation

Idea/Approach Details
Describe your idea/Solution/Prototype here:
2
Technology stack :
Examine Configuration Files :
▪PackageFiles:Manysoftwareprojectsuseconfigurationfilestospecifytheir
dependenciesandtheircorrespondingversions.Thesefilesareoftenlanguage-specific,
suchas‘requirements.txt’forPython,‘package.json’forJavaScript,‘pom.xml’forJava.
▪Dockerfiles:IfthesoftwareiscontainerizedusingDocker,wecancheckthe
‘Dockerfile’forinstructionsrelatedtoinstalledpackagesorlibraries.
By Using Dependency Management Tools :
▪PackageManagers:Dependingontheprogramminglanguage,wecanusethe
correspondingpackagemanagertolisttheinstalledlibrariesandtheirversions.For
example,JavaScript:'npmlist’.
SBOMGeneration:
▪Basedonthescanresults,thesoftwaregeneratesastructuredSBOMdocumentlisting
alldetecteddependencies,theirversions,andanyadditionalinformation.
Anomaly Detection:
▪Thesoftwareappliesanomalydetectionmechanismstoidentifyanyunusualor
unexpecteddependencies.
Project Status :
30%ofprojectbuildcompletedlikeallthepre-
implementationpart,furtherbuildisinprogress.
Testingandvalidationprocessarenexttobe
undergone.
Flow Chart :

Idea/Approach Details
Describe your Use Cases here
▪Regulatory Compliance : Companies canensurecomplianceby
regularlygeneratingSBOMsandaddressinganomaliesand
vulnerabilitiestomeetlegalstandards.
▪OpenSourceProjectManagement:Opensourceproject
maintainerscanusethetooltotrackdependenciesand
potentialsecurityissuesintheirprojects,enhancing
transparencyforcontributorsandusers.
▪Vulnerability Assessment : Securityteamscanutilizethetoolto
conductvulnerabilityassessments,identifyingandremediating
securityissuesrelatedtothird-partydependencies.
▪CollaborationandReporting:Teamscancollaborateeffectively
bysharingSBOMsandanomalyreports,makingiteasierto
discussandaddresssecurityissues.
▪EducationalPurposes:Educationalinstitutionscanusethe
softwaretoteachstudentsaboutsoftwaresecurity,
vulnerabilitymanagement,andsupplychainriskassessment.
3
Describe your Dependencies / Show stopper here
▪Automation : Developthetooltoautomatetheprocessof
dependencyanalysisandSBOMgeneration.Ensurethatitcan
beeasilyintegratedintoexistingdevelopmentandCI/CD
pipelines.
▪User-FriendlyInterface:Designauser-friendlyinterfaceforthe
tool,whichallowsuserstoinitiatescans,viewSBOMs,and
understandtheresults.
▪Security and Data Privacy : Implementsecuritymeasuresto
protectthedatacollectedduringthescanningprocessand
ensurecompliancewithdataprivacyregulations.
▪Continuous Updates : Planforregularupdatesand
maintenancetokeepthetoolup-to-datewithnewlibrariesand
vulnerabilities.
▪CustomizationandConfiguration:Userscanconfiguresettings
relatedtothescanningprocess,allowingforflexibilityand
adaptabilitytospecificprojectrequirements.

Team Member Details
Team Leader Name: Aniket Warule
Branch : B.E Stream : IT Year : II
Team Member 1 Name: Swapnil Dolare
Branch : B.E Stream : IT Year : II
Team Member 2 Name: Krishna Dhokde
Branch : B.E Stream : IT Year : II
Team Member 3 Name: Kunal Darekar
Branch : B.E Stream : IT Year : II
Team Member 4 Name: Komal More
Branch : B.E Stream : IT Year : II
Team Member 5 Name: Ankita Kharat
Branch : B.E Stream : IT Year : II
Team Mentor 1 Name: Harsha Rajput
Category : IT Industry Expertise : Senior Software Engineer Domain Experience : 6 yrs