Content area

Abstract

Translate

At a time when high-powered automated trading systems can execute stock sales in real time, some companies that rely on open-source software to help to run their businesses track their open-source use on spread sheets on paper. Lou Shipley, chief executive of Black Duck Software, which sells products to manage and protect open-source software, says the most effective way for companies to understand what is in their open-source software and how to better control it is to use automated processes that scan applications for open-source code, create an inventory of open-source components and check those components against what is in open-source vulnerability databases. Another reason is, unlike software from companies such as Microsoft, Oracle or SAP SE that send notices of when new patches and fixes are available, there are no notices sent with open-source software updates, he said.

Details

1007133
Subject
Public domain;
Open source software;
Freeware;
Automation
Business indexing term
Location
China; Hawaii; United States--US; India
People
Shipley, Lou
Company / organization
Name:
SAP SE
NAICS:
513210, 541511;
Name:
Pacific Business News
NAICS:
513110;
Name:
Microsoft Corp
NAICS:
334610, 513210;
Name:
Black Duck Software
NAICS:
513210
Title
After Equifax Breach, Companies Advised to Review Open-Source Software Code; There are a number of reasons why companies don't move quickly to install fixes for their open-source vulnerabilities, including pressure to get products to market quickly.
Author
DiPietro, Ben
Publication title
WSJ Pro. Cyber Security; New York
Pages
n/a
Publication year
2017
Publication date
Sep 20, 2017
Section
Pro Cyber
Publisher
Dow Jones & Company Inc.
Place of publication
New York
Country of publication
United States
Publication subject
Business And Economics, Computers--Computer Security
Source type
Trade Journal
Language of publication
English
Document type
News
ProQuest document ID
2171020047
Document URL
https://www.proquest.com/trade-journals/after-equifax-breach-companies-advised-review/docview/2171020047/se-2?accountid=208611
Copyright
(c) 2017 Dow Jones & Company, Inc. Reproduced with permission of copyright owner. Further reproduction or distribution is prohibited without permission.
Full text availability
This publication may be subject to restrictions within certain markets, including corporations, non-profits, government institutions, and public libraries. In those cases records will be visible to users, but not full text.
Last updated
2024-12-01
Database
ProQuest One Academic