Doctoral student in Software Supply Chain Security | WASP

KTH Royal Institute of Technology, School of Electrical Engineering and Computer Science is looking for a Doctoral student in Software Supply Chain Security.

The doctoral student will join the LangSec research group at KTH and work on the WASP project XSBOM, which focuses on developing innovative solutions for securing the software supply chain. The project aims to protect applications from risks introduced by third-party components while maintaining the flexibility of modern software ecosystems.

A central concept in XSBOM is the Capability-Enhanced Software Bill of Materials (CBOM), which serves as a security contract between component providers and developers. These CBOMs will be enforced dynamically using a combination of code instrumentation and program analysis. The approach will enable runtime protection and monitoring of third-party components, resulting in practical tool prototypes. The methods will be evaluated through large-scale experiments across established ecosystems such as npm and emerging platforms like AI supply chains.

Supervision: Associate Professor Musard Balliu is proposed to supervise the doctoral student. Decisions are made on admission

Read more and apply

We use cookies to personalise content and ads, to provide social media features and to analyse our traffic. We also share information about your use of our site with our social media, advertising and analytics partners. View more

Cookies settings

Accept

Privacy & Cookie policy

Privacy & Cookies policy

Cookie name	Active

The WASP website wasp-sweden.org uses cookies. Cookies are small text files that are stored on a visitor’s computer and can be used to follow the visitor’s actions on the website. There are two types of cookie:

permanent cookies, which remain on a visitor’s computer for a certain, pre-determined duration,
session cookies, which are stored temporarily in the computer memory during the period under which a visitor views the website. Session cookies disappear when the visitor closes the web browser.

Permanent cookies are used to store any personal settings that are used. If you do not want cookies to be used, you can switch them off in the security settings of the web browser. It is also possible to set the security of the web browser such that the computer asks you each time a website wants to store a cookie on your computer. The web browser can also delete previously stored cookies: the help function for the web browser contains more information about this. The Swedish Post and Telecom Authority is the supervisory authority in this field. It provides further information about cookies on its website, www.pts.se.

Cookies settings