-
-
Notifications
You must be signed in to change notification settings - Fork 75
Expand file tree
/
Copy pathbom.json
More file actions
170 lines (170 loc) · 5.64 KB
/
bom.json
File metadata and controls
170 lines (170 loc) · 5.64 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
{
"bomFormat": "CycloneDX",
"specVersion": "1.6",
"serialNumber": "urn:uuid:e8c355aa-2142-4084-a8c7-6d42c8610ba2",
"version": 1,
"metadata": {
"timestamp": "2024-01-09T12:00:00Z",
"component": {
"type": "application",
"name": "my application",
"version": "1.0"
}
},
"components": [
{
"name": "TLSv1.2",
"type": "cryptographic-asset",
"bom-ref": "crypto/protocol/tls@1.2",
"cryptoProperties": {
"assetType": "protocol",
"protocolProperties": {
"type": "tls",
"version": "1.2",
"cipherSuites": [
{
"name": "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384",
"algorithms": [
"crypto/algorithm/ecdh-curve25519@1.3.132.1.12",
"crypto/algorithm/rsa-2048@1.2.840.113549.1.1.1",
"crypto/algorithm/aes-256-gcm@2.16.840.1.101.3.4.1.46",
"crypto/algorithm/sha-384@2.16.840.1.101.3.4.2.9"
],
"identifiers": [ "0xC0", "0x30" ]
}
],
"cryptoRefArray": [
"crypto/certificate/google.com@sha256:1e15e0fbd3ce95bde5945633ae96add551341b11e5bae7bba12e98ad84a5beb4"
]
},
"oid": "1.3.18.0.2.32.104"
}
},
{
"name": "google.com",
"type": "cryptographic-asset",
"bom-ref": "crypto/certificate/google.com@sha256:1e15e0fbd3ce95bde5945633ae96add551341b11e5bae7bba12e98ad84a5beb4",
"cryptoProperties": {
"assetType": "certificate",
"certificateProperties": {
"subjectName": "CN = www.google.com",
"issuerName": "C = US, O = Google Trust Services LLC, CN = GTS CA 1C3",
"notValidBefore": "2016-11-21T08:00:00Z",
"notValidAfter": "2017-11-22T07:59:59Z",
"signatureAlgorithmRef": "crypto/algorithm/sha-512-rsa@1.2.840.113549.1.1.13",
"subjectPublicKeyRef": "crypto/key/rsa-2048@1.2.840.113549.1.1.1",
"certificateFormat": "X.509",
"certificateExtension": "crt"
}
}
},
{
"name": "SHA512withRSA",
"type": "cryptographic-asset",
"bom-ref": "crypto/algorithm/sha-512-rsa@1.2.840.113549.1.1.13",
"cryptoProperties": {
"assetType": "algorithm",
"algorithmProperties": {
"parameterSetIdentifier": "512",
"executionEnvironment": "software-plain-ram",
"implementationPlatform": "x86_64",
"certificationLevel": [ "none" ],
"cryptoFunctions": [ "digest" ],
"nistQuantumSecurityLevel": 0
},
"oid": "1.2.840.113549.1.1.13"
}
},
{
"name": "RSA-2048",
"type": "cryptographic-asset",
"bom-ref": "crypto/key/rsa-2048@1.2.840.113549.1.1.1",
"cryptoProperties": {
"assetType": "related-crypto-material",
"relatedCryptoMaterialProperties": {
"type": "public-key",
"id": "2e9ef09e-dfac-4526-96b4-d02f31af1b22",
"state": "active",
"size": 2048,
"algorithmRef": "crypto/algorithm/rsa-2048@1.2.840.113549.1.1.1",
"securedBy": {
"mechanism": "Software",
"algorithmRef": "crypto/algorithm/aes-256-gcm@2.16.840.1.101.3.4.1.46"
},
"creationDate": "2016-11-21T08:00:00Z",
"activationDate": "2016-11-21T08:20:00Z"
},
"oid": "1.2.840.113549.1.1.1"
}
},
{
"name": "ECDH",
"type": "cryptographic-asset",
"bom-ref": "crypto/algorithm/ecdh-curve25519@1.3.132.1.12",
"cryptoProperties": {
"assetType": "algorithm",
"algorithmProperties": {
"curve": "curve25519",
"executionEnvironment": "software-plain-ram",
"implementationPlatform": "x86_64",
"certificationLevel": [ "none" ],
"cryptoFunctions": [ "keygen" ]
},
"oid": "1.3.132.1.12"
}
},
{
"name": "RSA-2048",
"type": "cryptographic-asset",
"bom-ref": "crypto/algorithm/rsa-2048@1.2.840.113549.1.1.1",
"cryptoProperties": {
"assetType": "algorithm",
"algorithmProperties": {
"parameterSetIdentifier": "2048",
"executionEnvironment": "software-plain-ram",
"implementationPlatform": "x86_64",
"certificationLevel": [ "none" ],
"cryptoFunctions": [ "encapsulate", "decapsulate" ]
},
"oid": "1.2.840.113549.1.1.1"
}
},
{
"name": "AES-256-GCM",
"type": "cryptographic-asset",
"bom-ref": "crypto/algorithm/aes-256-gcm@2.16.840.1.101.3.4.1.46",
"cryptoProperties": {
"assetType": "algorithm",
"algorithmProperties": {
"parameterSetIdentifier": "256",
"primitive": "ae",
"mode": "gcm",
"executionEnvironment": "software-plain-ram",
"implementationPlatform": "x86_64",
"certificationLevel": [ "none" ],
"cryptoFunctions": [ "encrypt", "decrypt" ],
"classicalSecurityLevel": 256,
"nistQuantumSecurityLevel": 1
},
"oid": "2.16.840.1.101.3.4.1.46"
}
},
{
"name": "SHA384",
"type": "cryptographic-asset",
"bom-ref": "crypto/algorithm/sha-384@2.16.840.1.101.3.4.2.9",
"cryptoProperties": {
"assetType": "algorithm",
"algorithmProperties": {
"parameterSetIdentifier": "384",
"executionEnvironment": "software-plain-ram",
"implementationPlatform": "x86_64",
"certificationLevel": [ "none" ],
"cryptoFunctions": [ "digest" ],
"nistQuantumSecurityLevel": 2
},
"oid": "2.16.840.1.101.3.4.2.9"
}
}
]
}