Saved in:
Bibliographic Details
Main Authors: Safronov, Vadim, McCaigue, Anthony, Allott, Nicholas, Martin, Andrew
Format: Preprint
Published: 2025
Subjects:
Online Access:https://arxiv.org/abs/2510.02169
Tags: Add Tag
No Tags, Be the first to tag this record!
_version_ 1866912623502557184
author Safronov, Vadim
McCaigue, Anthony
Allott, Nicholas
Martin, Andrew
author_facet Safronov, Vadim
McCaigue, Anthony
Allott, Nicholas
Martin, Andrew
contents The growing integration of open-source software and AI-driven technologies has introduced new layers of complexity into the software supply chain, challenging existing methods for dependency management and system assurance. While Software Bills of Materials (SBOMs) have become critical for enhancing transparency and traceability, current frameworks fall short in capturing the unique characteristics of AI systems -- namely, their dynamic, data-driven nature and the loosely coupled dependencies across datasets, models, and software components. These challenges are compounded by fragmented governance structures and the lack of robust tools for ensuring integrity, trust, and compliance in AI-enabled environments. In this paper, we introduce Trusted AI Bill of Materials (TAIBOM) -- a novel framework extending SBOM principles to the AI domain. TAIBOM provides (i) a structured dependency model tailored for AI components, (ii) mechanisms for propagating integrity statements across heterogeneous AI pipelines, and (iii) a trust attestation process for verifying component provenance. We demonstrate how TAIBOM supports assurance, security, and compliance across AI workflows, highlighting its advantages over existing standards such as SPDX and CycloneDX. This work lays the foundation for trustworthy and verifiable AI systems through structured software transparency.
format Preprint
id arxiv_https___arxiv_org_abs_2510_02169
institution arXiv
publishDate 2025
record_format arxiv
spellingShingle TAIBOM: Bringing Trustworthiness to AI-Enabled Systems
Safronov, Vadim
McCaigue, Anthony
Allott, Nicholas
Martin, Andrew
Software Engineering
Cryptography and Security
The growing integration of open-source software and AI-driven technologies has introduced new layers of complexity into the software supply chain, challenging existing methods for dependency management and system assurance. While Software Bills of Materials (SBOMs) have become critical for enhancing transparency and traceability, current frameworks fall short in capturing the unique characteristics of AI systems -- namely, their dynamic, data-driven nature and the loosely coupled dependencies across datasets, models, and software components. These challenges are compounded by fragmented governance structures and the lack of robust tools for ensuring integrity, trust, and compliance in AI-enabled environments. In this paper, we introduce Trusted AI Bill of Materials (TAIBOM) -- a novel framework extending SBOM principles to the AI domain. TAIBOM provides (i) a structured dependency model tailored for AI components, (ii) mechanisms for propagating integrity statements across heterogeneous AI pipelines, and (iii) a trust attestation process for verifying component provenance. We demonstrate how TAIBOM supports assurance, security, and compliance across AI workflows, highlighting its advantages over existing standards such as SPDX and CycloneDX. This work lays the foundation for trustworthy and verifiable AI systems through structured software transparency.
title TAIBOM: Bringing Trustworthiness to AI-Enabled Systems
topic Software Engineering
Cryptography and Security
url https://arxiv.org/abs/2510.02169