As data continues to grow exponentially, datacenters are challenged with how to manage the increase in data complexity with on-demand access. When there isn’t a good solution to meet the need, Open Source and Flash are at the heart of solving these challenges by enabling companies to create scalable, agile and cost-effective datacenters. Join SanDisk’s Nithya Ruff, Open Source Strategy Director, as she outlines the use-cases for Open Source, and how to leverage the powerful combination of Open Source and flash technology to enable easy scaling, fast deployment of new services and improved user experiences and QoS.Read more >
Did you know that nearly all product documentation at SUSE is published under an open document license, such as the GNU Free Documentation License, or Creative Commons? And did you know that we use mainly open source tools during the processes for the creation of our guides, quick starts, best practices? If you are curious to hear more about these tools and processes, just join the talk, and discover how you can influence quality and output of the SUSE documentation work.Read more >
Join us as Patrick Quaiiroli discusses open source concepts, licensing, and the influence of the collaborating model of the golden age of technology.Read more >
The recent high-profile “Panama Papers” exploit, which resulted in the theft of 2.6 terabytes of data from the Mossack Fonseca law firm, highlighted the firm’s failure to effectively secure and manage its open source software.
Although the exploited component has yet to be pinpointed, the breach investigation has revealed that Mossack Fonseca was delinquent in patching known open source vulnerabilities in both Drupal and Wordpress. This lapse exposed sensitive client information.
Open source software is an essential element in application development today and this breach raises the question: What are the best practices for securing and managing open source to avoid exploitation? This webcast will detail the processes organization can implement to secure and manage their open source to reduce risk from security vulnerabilities.
Recent Black Duck On-Demand security audits of 200 commercial applications confirm the importance of open source in application development, but also highlight the persistent challenges organizations face in effectively securing and managing their open source. Black Duck’s Open Source Security Audit Report reveals that on average the applications contained more than twice as much open source as the organizations thought, and that 67% of the audited applications contained known open source vulnerabilities.
In this 30-minute webinar, Black Duck VP of Security Strategy Mike Pittenger will review the audit findings and discuss strategies companies can use to minimize security risk while maximizing the economic and productivity value open source provides.
Open source-savvy lawyers have long advised their clients on managing license risk. But, insight into the open source used in a code base is also critical to managing security risks.
Join Phil Odence, Vice President and General Manager at Black Duck Software, as he moderates a panel on the strategies you should have in place to manage the security of open source components in applications and containers.
DLA Piper security expert Peter McLaughlin will discuss the legal underpinnings of cyber security. David Wheeler, security research expert for the Institute for Defense Analyses (IDA) will explore the Linux Foundation's Core Infrastructure Initiative to ensure the security of open source projects.
The first quarter of 2016 was a big one for new open source security vulnerabilities. The Glibc vulnerability was by far the biggest. It impacts nearly 900K of the 1 million different open source projects. In this webinar, we’ll dive into Glibc and the Q1 data to help you:
- Understand latest trends in open source security threats and what it means to your organization in 2016
- Simple steps to quickly find and protect yourself from newly reported threats
- Prepare your organization to respond to new vulnerabilities in open source projects
Please join us to learn the results of the 2016 Future of Open Source Survey.
Today, open source drives technology and development forward. Its adoption worldwide is visible in companies ranging in size from a single employee to companies like Microsoft and Apple. All of these organizations rely on open source to innovate, reduce development costs, and speed time to market. In this evolving market, important questions remain about open source management, security, policies and procedures, and governance.
The Future of Open Source Survey includes input from new players, established leaders, and influencers across vertical markets and communities. This range of respondents drives broad industry awareness and discussions of key issues.
Please join these industry influencers as they review the top level results from the survey, and bring your questions.
Jeffrey Hammond - Forrester Research @jhammond
Paul Santinelli - North Bridge @paulsantinelli
Bill Ledingham - Black Duck Software @bill_ledingham
Jay Jay Billings - Oak Ridge National Laboratory @jayjaybillings
Follow the conversation on Twitter, using the hashtag #FutureOSS
2015 saw continued growth for open source software across many dimensions, a trend expected to continue in this coming year and a range of interesting developments that we reviewed in the last webinar.
In this webinar, the panelists will discuss:
- Open source and application security
- Community-centered compliance as reflected in OpenChain and SPDX
- The explosion of company involvement in collaborative projects
- The direction of the VMware case and other topics we anticipate being hot this year
Register now to join Black Duck, Mark Radcliffe and Karen Copenhaver on to discuss the hot topics generating buzz in the year to come.
Join us for the very first in a series of highly interactive webinars to learn why managing open source vulnerabilities has become the top concern of many corporations today. Having survived a few high-profile vulnerabilities such as Heartbleed, Shellshock, and Ghost, the need to more proactively manage the open source software used to build your own applications has become paramount. In this webinar, our experts will demonstrate how you can leverage your existing investment in Black Duck Protex and Code Center and quickly get visibility and control of these types of security risks by using our next-generation platform – The Black Duck Hub. After a fast-paced demonstration, we’ll leave plenty of time for you to ask our experts questions. We’ll also provide you with a preview of the next webinar in the series which will showcase brand new policy management capabilities in the Black Duck Hub.
You Will Learn How To:
-Identify open source security vulnerabilities in minutes with your Protex BOM and the new Black Duck Hub
-Address high profile vulnerabilities more quickly using Black Duck Hub notifications
-Track remediation of open source vulnerabilities in your projects
Enterprise class open source software can help to dramatically cut costs, lower deployment and vendor risk and enable innovation to solve real problems. Compared with alternative choices, Sun's investment in product development combined with broad community support results in the best vendor to provide global support and services for open source software.Read more >
Business critical services are increasingly being hosted on Linux and need to be protected against various threats. The proven and mature Open Source High-Availability Clustering Suite automates recovery from node and software faults, secures the data and eases administrative tasks. This presentation will outline key concepts, use cases and features of the software stack.Read more >
There are numerous methods available when upgrading to SUSE Linux Enterprise 12 Service Pack 1. This talk will cover some of the tools you can use in both manual and semi-automated upgrades, like yast, zypper, SUSEConnect, snapper and others, that you will want to know to perform a successful upgrade. But just in case something goes wrong, this session will also focus on how to use snapper to rollback a failed SUSE Linux Enterprise 12 Service Pack 1 upgrade.Read more >
Lawyers are trained to mistrust what they don’t understand. This webinar features members of Chef’s legal and engineering leadership who will give real-life, “in the trenches” perspectives on using open-source software in large enterprises. Our goal is to reduce lawyers’ and procurement departments’ fear and loathing of open source licensing by providing a better understanding of why engineers use open source and how legal can work with engineering to provide guidelines and visibility into open source use.Read more >
Are you using open source software components to achieve continuous development and faster cycle times? Does your need for speed conflict with your organization’s open source policies and processes? Hear from Nigel Simpson, Director of Architecture at a major media industry powerhouse on how they built a ‘developer centric’ open source governance strategy that balanced the goals of both development and security.Read more >
For years, development teams and now security professionals have looked to Sonatype for better management of open source and third party components across the software supply chain. Join our live product roadmap discussion on September 25th to learn more about our commitment to helping you achieve real business value from your enterprise applications more quickly - with efficiency, quality and security addressed across the software lifecycle. See how with new product advancements for more component languages, a consolidated risk management dashboard and expanded integration points across the SDLC can bring your organization enterprise-class component management to your development operations.Read more >
While Software Defined Storage is becoming one of the major trend topics in the Data Center, what do you do with your current “legacy” arrays?
Learn how with ViPR Controller, or its Open Source counterpart, CoprHD, you can automate and make your datacenter “software defined” with your current infrastructure.
Certain types of data are commonly analyzed. Sales, customer service, web and marketing analytics are being closely monitored by most companies these days. But there are sources of data inside our companies that no one is thinking about that can be just as valuable, if not more so. How do we identify these, and how do we do something useful with them once we have? Brian Lange from Datascope shares his thoughts plus a couple examples from his work with Proctor and Gamble and others.Read more >
Over 3,300 participated! The final results of our 4th Annual Open Source and Application Security Survey are in. Adrian Lane from Securosis and Brian Fox from Sonatype provide a detailed breakdown of the findings from a developer and an application security perspective. They discuss policies, practices, and breaches as well as how organizations can use these results to create constructive conversations to feed their open source security management practices.Read more >