What Will Make AI BOMs Real?

What Will Make AI BOMs Real?

Newsletter Sign-UpNewsletter Sign-UpCybersecurity TopicsRelated TopicsApplication SecurityCybersecurity CareersCloud SecurityCyber RiskCyberattacks & Data BreachesCybersecurity AnalyticsCybersecurity OperationsData PrivacyEndpoint SecurityICS/OT SecurityIdentity & Access Mgmt SecurityInsider ThreatsIoTMobile SecurityPerimeterPhysical SecurityRemote WorkforceThreat IntelligenceVulnerabilities & ThreatsRecent in Cybersecurity TopicsEndpoint SecurityChina's Webworm Uses Discord, Microsoft Graphs to Hack EU GovernmentsChina's Webworm Uses Discord, Microsoft Graphs to Hack EU GovernmentsbyAlexander CulafiMay 22, 20264 Min ReadApplication SecurityGitHub Confirms Breach, 4K Internal Repos StolenGitHub Confirms Breach, 4K Internal Repos StolenbyAlexander CulafiMay 20, 20263 Min ReadWorld Related TopicsDR GlobalMiddle East & AfricaAsia PacificLatin AmericaSee AllThe EdgeDR TechnologyEventsRelated TopicsUpcoming EventsPodcastsWebinarsSEE ALLResourcesRelated TopicsResource LibraryNewslettersPodcastsReportsVideosWebinarsWhite Papers Partner PerspectivesDark Reading Resource LibraryCybersecurity AnalyticsCybersecurity OperationsCyber RiskWhat IsCybersecurity In-Depth: Feature articles on security strategy, latest trends, and people to know.What Will Make AI BOMs Real?A brief overview of the forces at play that will get more organizations on board with creating and consuming AI bill of materials (BOM).Ericka Chickowski, Contributing WriterMay 19, 20263 Min ReadA close up of a blue and white robotStandards bodies, open-source projects, and commercial vendors are already building meaningful momentum for realizing the promise of AI BOM.OWASP, with its CycloneDX SBOM standard, and the Linux Foundation, with its SPDX standard, have both released AI-specific extensions. The OWASP AI SBOM Initiative holds weekly open meetings and has developed the OWASP AI BOM Generator, the first open-source tool to automatically generate AIBOMs from Hugging Face models in CycloneDX format. And the SPDX standard added dedicated AI and dataset profiles in version 3.0, providing field mappings for model training and data provenance. Meanwhile, the OpenSSF AI/ML Working Group formalized a model-signing specification in 2025, with contributions from Google, HiddenLayer, and NVIDIA. Additionally, CISA's AI SBOM Tiger Team published foundational guidance in 2025, though the agency's significant personnel cuts this year have cast uncertainty over many of its ongoing initiatives. Related:Is 2026 the Year AI Bills of Materials Get Real?On the commercial side, vendors are adding AI BOM capabilities to their platforms. Manifest Cyber released its AI supply chain security product in summer 2025, developed in partnership with major IT, defense, and automotive companies, and has been running an AIBOM generator for over 18 months. Cycode launched AI & ML Inventory and AI BOM generation in October 2025 as part of its application security posture management platform. JFrog is extending its platform to manage AI models with the same rigor as software artifacts, unveiling a Universal MCP Registry in March 2026. Apiiro and others are building similar integrations. Academic work is progressing too — a January 2026 paper introduced AIBoMGen, a proof-of-concept platform for generating cryptographically signed AIBOMs during model training.Regulatory pressure is also adding a sense of urgency. The EU AI Act comes into full effect in August 2026, with documentation requirements that align directly with AI BOM content. Organizations deploying high-risk AI systems must have conformity assessments completed, technical documentation finalized, and EU database registration in place by that date. The act specifically requires logging capabilities that cover situations where the system might present a risk, data for post-market monitoring, and operational monitoring by deployers, all of which align with the provenance and telemetry documentation that AI BOMs are designed to capture.US regulators are moving too. New language in the FY26 National Defense Authorization Act requires vendors selling software to the DoD to account for AI components in their SBOMs — effectively mandating AI BOMs for defense contractors. Additionally, the SEC has identified AI governance as an examination priority for 2026, and examiners are asking pointed questions about AI policies and governance even without new dedicated rules. Plus, cyber insurers are following the same playbook they used after ransomware reshaped underwriting in 2021. Carriers are beginning to condition coverage on AI governance documentation, treating the absence of a model inventory as a risk signal rather than an oversight. CyberCube's April 2026 Global Threat Briefing recommends that underwriters evaluate "the governance of AI agents, including permissions, API scope control, logging, and segregation of duties." These are the kinds of controls that agentic-ready AI BOMs could help organizations document and demonstrate.AI BOM adoption remains largely aspirational as the industry races to define standards and build practical tooling before regulatory deadlines hit. Read Is 2026 the Year AI Bill of Materials Get Real? to see how security leaders are addressing the current visibility challenges. About the AuthorEricka Chickowski, Contributing WriterEricka Chickowski specializes in coverage of information technology and business innovation. She has focused on information security for the better part of a decade and regularly writes about the security industry as a contributor to Dark Reading.See more from Ericka Chickowski, Contributing WriterWant more Dark Reading stories in your Google search results?Add Us NowMore InsightsIndustry ReportsHow Organizations Are Managing Incident ResponseHow Enterprises Are Developing Secure ApplicationsInside RSAC 2026: security leaders reveal the risks redefining your defense strategyHow Enterprises Are Harnessing Emerging Technologies in CybersecurityDitch the Data Center: Understanding Flexible Cloud Infrastructure Security ManagementAccess More ResearchWebinarsBuild vs. Buy: The Hidden Cost of Building Your Own AI Security StackDefending in the Shadow Era: When the CVE Feed Goes DarkBuilding SecOps That Make the Most of Every DollarAI-Powered Credential Security: Intelligence Without ExposureAI-Powered Cybersecurity for Resource-Constrained OrganizationsMore WebinarsEdge PicksApplication SecurityAI Agents in Browsers Light on Cybersecurity, Bypass ControlsAI Agents in Browsers Light on Cybersecurity, Bypass ControlsCyber RiskBrowser Extensions Pose Heightened, but Manageable, Security RisksBrowser Extensions Pose Heightened, but Manageable, Security RisksLatest Articles in The EdgeCyber RiskVerizon DBIR: Healthcare Fends Off Increased Social Engineering AttacksMay 22, 2026|5 Min ReadCyberattacks & Data BreachesProcesses & Culture Top Reasons Behind Data BreachesMay 20, 2026|6 Min ReadCyber RiskHow CISOs Should Prep for Agentic-Ready AI BOMsMay 20, 2026|11 Min ReadCyber RiskCheckbox Assessments Aren't Fit to Measure RiskMay 13, 2026|5 Min ReadRead More The EdgeWant more Dark Reading stories in your Google search results?Black Hat Asia | Marina Bay Sands, SingaporeExperience cutting-edge cybersecurity insights in this four-day event. Use code DARKREADING for a Free Business Pass or $200 off a Briefings Pass.GET YOUR PASS