Lmst
Login

#NetBOM

Chuck Davisckdiii@infosec.exchange
2025-04-22

Just submitted a talk to DEF CON 33:
What SBOMs Forgot About the Network

NetBOM is a community-driven framework to declare where a device or app should connect so your network can block the rest.

Enforceable trust at the network layer.
netbom.net
#NetBOM #Cybersecurity #IoTSecurity #DEFCON33

Chuck Davisckdiii@infosec.exchange
2025-04-14

🔐 I ran an experiment on my smart thermostats:
➤ Blocked all Internet traffic
➤ Asked support for needed IPs/domains
➤ They said: “Just put it in the DMZ”
That’s not Zero Trust. That’s zero security.
So I built NetBOM—a network bill of materials.
Like SBOM, but for the Internet access devices actually need.
🔗 betweenthehacks.com/thermostat
📄 netbom.net
#CyberSecurity #IoT #Privacy #Infosec #SmartHome #NetBOM #ZeroTrust

Client Info

Server: https://mastodon.social
Version: 2025.04
Repository: https://github.com/cyevgeniy/lmst