SANCTUARY Insight: System BOM Generation for Mechanical & Plant Engineering

SANCTUARY Insight is a platform for OT asset inventory and cybersecurity management, designed to provide comprehensive transparency and control across the entire lifecycle of industrial systems. Modern production facilities and machinery integrate a wide range of heterogeneous components. Each of these subsystems relies on manufacturer-specific firmware and software that evolve independently. This complexity frequently results in gaps in vulnerability management, particularly when systems are modified or reconfigured after commissioning.

SANCTUARY Insight is used by machine and plant manufacturers to automatically detect all integrated OT devices within a machine cell or production line during delivery and commissioning, and to generate a system-wide Bill of Materials (SBOM) that encompasses both hardware and software components. Software elements are uniquely mapped to the devices on which they are executed, enabling complete traceability throughout the entire lifecycle. The resulting SBOM can be exported in structured formats and continuously correlated with up-to-date vulnerability information. This functionality directly supports compliance with the EU Cyber Resilience Act, which requires manufacturers of products with digital elements to maintain SBOMs and manage security vulnerabilities throughout the product lifecycle. By automating SBOM generation and vulnerability monitoring, SANCTUARY Insight reduces compliance overhead while establishing a robust and scalable foundation for secure lifecycle management in industrial environments