Binarly, a leader in firmware and software supply chain security, today announced it has been awarded U.S. Patent No. 12153686, recognizing its invention of an innovative process for generating Cryptography Bills of Materials (CBOM) from binary executables.
The invention underscores Binarly’s commitment to deep technical innovation in addressing supply chain security risks across modern computing. By combining program analysis and machine learning techniques, the patented technology enables organizations to identify cryptographic primitives embedded within software, providing actionable insights into potential security vulnerabilities — without requiring access to source code.
“As organizations strive to secure their software supply chains, understanding cryptographic dependencies has become more critical than ever,” said Alexander Matrosov, CEO and one of the listed inventors of the patented technology. “This innovation empowers teams to better manage risks and prepare for a quantum-safe future.”
The patented method involves:
- Identifying cryptographic primitives through similarity and cross-reference analyses.
- Performing call-site analysis to detect cryptographic algorithm parameters.
- Generating a detailed CBOM, highlighting cryptographic assets, their dependencies, and usage.
The patent highlights Binarly’s focus on providing scalable solutions that align with emerging cybersecurity frameworks, including zero-trust architecture and quantum readiness.
Binarly’s CBOM technology is poised to redefine cryptographic asset discovery and management by enabling:
- Improved Transparency: Clear identification of cryptographic assets within software packages.
- Enhanced Compliance: Alignment with NIST regulatory standards for secure cryptographic practices.
- Proactive Risk Mitigation: Actionable insights for mitigating cryptographic vulnerabilities.
The patented innovation is integral to Binarly’s mission to deliver cutting-edge solutions for firmware security, software supply chain risk management, and enterprise cybersecurity.
For more information, visit www.binarly.io.
About Binarly:
Binarly is a global firmware and software supply chain security company founded in 2021. The company’s flagship Binarly Transparency Platform is an enterprise-class, AI-powered solution used by device manufacturers, OEMs, IBVs and product security teams to identify known and unknown vulnerabilities, misconfigurations and signs of malicious code implantation. Binarly’s validated remediation playbooks have significantly reduced the cost and time to respond to security exposures. Based in Los Angeles, California, Binarly brings decades of research and program analysis expertise to build solutions to protect businesses, critical infrastructure, and consumers around the world.
View source version on businesswire.com: https://www.businesswire.com/news/home/20241126874384/en/