For a CISO, open source introduces a new source of risk and unique security challenge: how do you influence developers over whom you have no direct management control? Jennifer Bayuk, former CISO of Bear Stearns, provides insight on best practices for evaluating, deploying and managing open source code.
Recently, enterprises have seen enormous gains in scalability, flexibility, and affordability as they migrated from proprietary, monolithic server architectures to architectures that are virtualized, open source, standardized, and commoditized.
Published By: Gluster
Published Date: Mar 17, 2011
This document discusses some of the unique technical aspects of the Gluster architecture, discussing those aspects of the system that are designed to provide linear scale-out of both performance and capacity without sacrificing resiliency.
Published By: Appcito
Published Date: Apr 09, 2015
Appcito CAFE (Cloud Application Front End) is an easy-to-deploy, uni?ed and cloud-native service enabling cloud application teams to select and deploy enterprise-grade L4 to L7 application network services. The multi-cloud CAFE service is available for the OpenStack
open-source cloud computing software platform. OpenStack is a multivendor ecosystem used to deploy Infrastructure-as-a-Service (IaaS) solutions. It allows users to bring compute, storage, and networking resources into private and public clouds through a set of open APIs.
Using open source code is not necessarily a problem, but not knowing what open source you’re using can be extremely dangerous, particularly when so much open source contains security flaws. In fact, the latest Future of Open Source Survey found that:
- 55 percent of respondents had no formal policy or procedure for open source consumption
- 98 percent were unaware of the open source code they were using
"Application Security in 2016," a complimentary report from Black Duck Software, considers the key application security challenges your organization will face, with a special focus on staying both agile and secure with open source. Download the report today!
Is your software defined infrastructure (SDI) for high performance computing (HPC) and big data analytics meeting the needs of your growing business? Would you like to know how to justify the switching cost from unsupported open source software to a commercial grade SDI that ensures your resources are more effectively used cutting down time to market? This webcast will give you an overview of the true costs of building out and managing a HPC or Big Data environment and how commercial grade SDI software from IBM can provide a significant return on investment.
Published By: ColdSpark
Published Date: Feb 23, 2007
Though legacy open-source email network applications like sendmail and postfix are widely used, the escalating demands of today's enterprise environments have outpaced their capabilities. Large organizations must now look to implement a true enterprise mail transport platform to support the standards of their current and growing business. Learn how to modernize your email system now.
How IBM can help
As one of the world’s leading research organizations, and one
of the world’s top contributors to open source projects, IBM
is committed to fostering the collaborative effort required to
transform how people, governments and businesses transact
and interact. IBM provides clients the blockchain technology
fabric, consulting and systems integration capabilities to
design and rapidly adopt distributed ledgers, digital identity
and blockchain solutions. IBM helps clients leverage the
global scale, business domain expertise and deep cloud
integration experience required for the application of these
technologies. Learn more at ibm.com/blockchain.
The IBM Global Electronics practice uniquely combines IBM
and partner services, hardware, software and research into
integrated solutions that can help you deliver innovation,
create differentiated customer experiences and optimize
your global operations. Please visit ibm.com/electronics
Want to get even more value from your Hadoop implementation? Hadoop is an open-source software framework for running applications on large clusters of commodity hardware. As a result, it delivers fast processing and the ability to handle virtually limitless concurrent tasks and jobs, making it a remarkably low-cost complement to a traditional enterprise data infrastructure. This white paper presents the SAS portfolio of solutions that enable you to bring the full power of business analytics to Hadoop. These solutions span the entire analytic life cycle – from data management to data exploration, model development and deployment.
Published By: CheckMarx
Published Date: Apr 03, 2019
We live in an era of digital transformation.
Software is the backbone of this digital
transformation. Mobile, cloud, open
source, Internet of Things, microservices
and AI have made software more
complex. Over 80% of the code in
today’s software applications is open
source. Estimates show that there will
be 30 billion connected IOT devices by
2020. Furthermore, 85% of customer
interactions will be computer managed
by 2020. Software is everywhere. While
software has gotten more complex, timeto-market is the new name of the game
and enterprises can’t risk security slowing
Published By: Red Hat
Published Date: Sep 08, 2017
Red Hat is a modern-day success story; it’s open-source software (OSS) model has now penetrated nearly every layer of IT systems that were once proprietary — compute, storage, cloud, middleware and others. The company is recognized as a strategic, multi-product portfolio software solutions vendor among enterprise users.
This report is the result of the largest public-private sector research project focused on open source software integrity, originally initiated between Coverity and the U.S. Department of Homeland Security in 2006. The results from the 2010 edition of the Coverity Scan Open Source Integrity Report detail the findings of analyzing more than 61 million lines of open source code from 291 popular and widely-used open source projects such as Android, Linux, Apache, Samba and PHP, among others.
Published By: MuleSoft
Published Date: Jan 16, 2018
To achieve efficiencies in today’s turbulent economic climate, government entities need to integrate legacy applications with modern systems and web services. Orchestration between multiple systems across various departments and municipalities is needed to deliver quality public services. At the same time, public sector agencies face aggressive timelines and budget constraints, changing constituent needs, and open source policies. Learn how utilizing a lightweight, standalone Enterprise Service Bus (ESB) enables government entities to meet these key challenges and deliver vital public goods while cutting costs.
Evalute important decisions:
Achieving efficiencies in today’s turbulent budgetary environment
Time to Delivery and Budget Constraints
Constituent Needs and Public Value
Open Source Policies & Initiatives
The Software Architecture for Government
Learn to deliver projects within tight schedules and fiscal constraints - download now.
Published By: CrownPeak
Published Date: Jun 30, 2009
Congratulations you've decided to embark on the journey to implement a content management system (CMS) for your Web site. This document assumes that you have already built the business case for purchasing a CMS and has been signed off on by the appropriate stakeholders. Learn more today!
Is open source secure? How much business risk is introduced with it? Fortify surveyed the open source community for an answer and revealed that open source projects lack the three essential elements of security: people, process and technology. Read this research to discover what actions can reduce these risks within your organization.
IT organizations are constantly faced with the challenge to produce high-quality solutions with a lower total cost of ownership (TCO). With the growing recognition that open source software provides quality, stable solutions, migrations of existing enterprise applications to products such as JBoss® Enterprise Application Platform have become increasingly popular.
JBoss Enterprise Application Platform provides a holistic solution that includes tools for such business challenges as business process management, enterprise application integration, and serviceoriented architectures (SOA), enterprise portals, and data services solutions.
Published By: Red Hat
Published Date: Jan 08, 2014
OpenStack is an open source cloud system software project that has broad participation from the IT Industry. IDC evaluates the current situation and provides a future outlook evaluating the deployment and support model and addressing OpenStack enterprise features and support.
This research brief begins with an outline of the major costs to consider when making an investment in analytics, the second section presents five modernization stages that analytics hardware/software have experienced, and the final section finishes with considerations when calculating total cost of ownership of the analytics ecosystem.
Published By: Tenable
Published Date: Mar 07, 2018
Includes 5 tips for bridging the DevOps InfoSec gap.
Across industries, in the public and private sector alike, the benefits of DevOps are undeniable: speed to market, improved service delivery and cost savings. At the same time, DevOps can create security blind spots that impact an entire enterprise. To understand why this happens and learn how you can bridge the gap between security and development, read: Information Security in the DevOps Age: Aligning Conflicting Imperatives.
Topics covered include:
- Rethinking the role of security
- Shifting security left by focusing on code quality and prevention
- Blind spots in containers and open source components
- 5 tips for bridging the DevOps infosec gap
Written by CyberScoop, this paper offers practical advice for DevOps and InfoSec professionals who want to realize the benefits of accelerated software development without jeopardizing enterprise security.
It's hard to believe, but some enterprises still use custom-coded Web content management (WCM)solutions. However, consumer demands have forced firms to shift from just managing and publishing Web sites to the daunting complexities of multichannel customer engagement, and it has becomeuntenable to build and maintain the required tools. With few exceptions, any firm with a custom-coded WCM platform should begin transitioning to a commercial or open source solution. For some firms,open source products offer the attractions of custom-coding with lesser software development and maintenance burdens.