The Food and Drug Administration, for example, has been pushing medical device manufacturers to submit a “cybersecurity bill of materials,” a list of every commercial, open-source, and off-the-shelf software and hardware component in medical devices that could be susceptible to vulnerabilities.
