@misc{rfc9472,
    series =    {Request for Comments},
    number =    9472,
    howpublished =  {RFC 9472},
    publisher = {RFC Editor},
    doi =       {10.17487/RFC9472},
    url =       {https://www.rfc-editor.org/info/rfc9472},
    author =    {Eliot Lear and Scott Rose},
    title =     {{A YANG Data Model for Reporting Software Bills of Materials (SBOMs) and Vulnerability Information}},
    pagetotal = 18,
    year =      2023,
    month =     oct,
    abstract =  {To improve cybersecurity posture, automation is necessary to locate the software a device is using, whether that software has known vulnerabilities, and what, if any, recommendations suppliers may have. This memo extends the Manufacturer User Description (MUD) YANG schema to provide the locations of software bills of materials (SBOMs) and vulnerability information by introducing a transparency schema.},
}