Hi [[ session.user.profile.firstName ]]
Sort by:
    • Open Source Software: IP risk and strategies to manage
      Open Source Software: IP risk and strategies to manage Martin Callinan from Source Code Control Upcoming: Nov 1 2017 4:00 pm UTC 60 mins
    • Open Source Software is now broadly used in the development of software applications. The ability to reuse components of code already created allows development teams to create more code, with more functionality, faster. It also promotes the adoption of standards and makes applications more interoperable.

      With the increasing adoption of open source software in software development there is an increasing need for organisations to understand free and open source software licensing obligations and compliance issues.

      PatSnap will be joined by Martin Callinan, Founder of Source Code Control. Martin has over 20 years’ experience providing organisations with strategies to manage business risks associated with open source software such as IP compliance, security vulnerability management and procurement. He is actively involved in the open source software industry to help create best practices and industry standards for the adoption and management of open source based software through organisations such as TechUK and OpenUK.

      Read more >
    • Open Source Management Integrated into Microsoft VSTS and TFS
      Open Source Management Integrated into Microsoft VSTS and TFS WhiteSource Recorded: Aug 15 2017 11:00 am UTC 13 mins
    • WhiteSource Bolt is an integrated product within the Visual studio team services product. It automatically detects all open source components in your build and alerts on vulnerable open source components, outdated libraries, and licenses compliance issues.

      WhiteSource integrates with your Visual Studio Team Services (VSTS) or Team Foundation Server (TFS) continuous integration servers and detects all open source components in your software, without ever scanning your code. It provides you with real-time alerts on vulnerable and outdated open source components and generates comprehensive up-to-date inventory, licenses and security reports with only one click.

      Read more >
    • Healthcare and Open Source – Balancing Innovation Against Risk
      Healthcare and Open Source – Balancing Innovation Against Risk Jim DeGraw, Partner, Ropes & Gray; Mike Pittenger, VP Security Strategy, Black Duck Recorded: Aug 8 2017 3:00 pm UTC 59 mins
    • More and more innovation in the healthcare industry is powered by open source software, whether it’s for a new pacemaker or the latest Electronic Medical Records (EMR) platform.

      A recent study of more than 1,000 commercial software applications found that open source components comprised 46% of the code in commercial applications for healthcare-related industries. But with innovation comes risk. The same research uncovered high-risk open source security vulnerabilities in 47% of the healthcare applications studied.

      A focused approach to managing open source risk is essential as HIPAA and the European Union’s General Data Protection Regulation (GDPR) put new pressures on healthcare providers and technology companies to protect patient data privacy and security.

      If you're concerned with healthcare application security, learn why open source management is essential for your overall security strategy.

      Read more >
    • Open Source Management with WhiteSource
      Open Source Management with WhiteSource WhiteSource Recorded: Aug 15 2017 10:55 am UTC 2 mins
    • Your developers love open source. It saves coding. It saves time. It makes software better, faster. But, it comes with responsibility; like licenses to track, updates to make and security to protect. This means your team spends valuable time tracking every module; manually…via emails…and spreadsheets, while key dependencies, new versions and worse get missed. This, your developers do not love. Those security and licenses risks are exactly the reason we created WhiteSource

      WhiteSource integrates with any build tool, running in the background as part of your continuous integration environment.When it comes time to release, you have a full status report of all your open source at your fingertips…And no surprises. WhiteSource makes meticulously managing open source effortless. Your developers will love that.So will your sales team.Which is why you are really going to love WhiteSource!

      Read more >
    • The Results Are In: Open Source 360 Survey
      The Results Are In: Open Source 360 Survey Tim Mackey, Sr. Technology Evangelist, Black Duck; Bob Canaway, CMO, Black Duck Recorded: Jun 22 2017 3:00 pm UTC 60 mins
    • Today, open source drives technology and development, and its worldwide adoption ranges from companies with a single employee to large corporations like Microsoft and Apple. All of these organizations rely on open source to innovate, reduce development costs, and speed time to market. Recent research reports point out that open source comprises 80% to 90% of the code in a typical application. Our Open Source 360° survey provides an update on the rapid evolution of open source development, use and management.

      The 2017 Open Source 360° survey was conducted through Black Duck’s Center for Open Source Research & Innovation (COSRI), focusing on four important areas of open source – usage, risk, contributions and governance/policies. Our respondents include input from new players, established leaders, and influencers across vertical markets and communities. This range of respondents drives broad industry awareness and discussions of these key issues.

      Please join Technology Evangelist Tim Mackey (@timintech) and CMO Bob Canaway (@bobcanaway) to review the results from the Open Source 360 Survey. Please bring your questions! 

      Follow the conversation on Twitter, using the hashtag #OSS360.

      Read more >
    • Assessing Open Source Risk: An Imperative for M&A Professionals
      Assessing Open Source Risk: An Imperative for M&A Professionals Phil Odence, Vice President & General Manager On-Demand Audits; Mike Pittenger, VP Security Strategy Recorded: Apr 19 2017 3:00 pm UTC 59 mins
    • Open source software use is ubiquitous worldwide, increasing the importance that M&A professionals understand the potential security, license compliance, and operational risks open source represents in today’s transactions.

      This webinar will detail findings in a recent report issued by Black Duck’s Center for Open Source Research and Innovation (COSRI) showing that most M&A target organizations are not effective in securing and managing their open source.

      Black Duck On-Demand audits hundreds of commercial code bases each year. The Open Source Security and Risk Analysis (OSSRA) will provide insight and results from over 1000 audits performed in 2016, including:

      - The number, age and severity of vulnerabilities in the open source components
      - The gap between the number of open source components used versus what the target company thought it was using
      - The prevalence of open source components using licenses that could put IP at risk

      Read more >
    • Before You Outsource, Protect Your IP & Mitigate Open Source Risks
      Before You Outsource, Protect Your IP & Mitigate Open Source Risks Jim Markwith, Managing Partner at Symons Markwith LLP Recorded: Apr 18 2017 3:30 pm UTC 60 mins
    • Today’s rapidly changing technologies, including the proliferation of open source and the accelerating shift to the cloud, are increasing the use of outside experts for both application development and IT solutions. At the same time, IP security is top of mind worldwide. This presentation will look at ways organizations can outsource to meet their development needs and also address open source security and management risks before giving contractors access to their valuable technologies.


      Jim's bio:

      Jim Markwith is an experienced technology and corporate transactions attorney with over 20 years of experience. His clients range from start-ups to fortune 50 technology leaders, including computer software, on-line retail, and Healthcare IT product and service developers. Prior to private practice, Jim held Executive and Senior in-house legal positions with Microsoft, Adobe Systems, and Allscripts Healthcare. Jim received his J.D. degree from Santa Clara University School of Law, and is a member of the California, Washington, DC, and Washington State Bar Associations.

      For more information on Jim, please click http://symonsmarkwith.com/jim-markwith. For questions about this presentation, or for more information on available legal support, please contact Jim at jim@symonsmarkwith.com.

      Read more >
    • Litigating Open Source – Lessons learned from Hellwig and McHardy
      Litigating Open Source – Lessons learned from Hellwig and McHardy Mark Radcliffe, DLA Piper; Bernd Siebers, DLA Piper, Phil Odence, Black Duck Recorded: Mar 23 2017 3:30 pm UTC 62 mins
    • The next wave of open source compliance challenges is upon us. Historically, enforcement has been a community based effort with an emphasis on “doing the right thing”. In recent years, however, we have seen the emergence of private enforcement and enforcement driven by entities and individuals for purposes of economic gain. In some cases these actions are to enforce legitimate interests arising from, for instance, dual licensing models. In other cases, copyright “trolls” are pressing an agenda. In this webinar, Mark Radcliffe and Bernd Siebers will review some of the current litigation trends, evaluate how the different elements of the open source community are reacting to these trends and offer insights and strategies for avoiding the cross-hairs. This includes taking a closer look at open source cases litigated in 2016 in Germany, including the following questions:

      - Are we experiencing a shift in jurisprudence?
      - What should users and developers of open source software do to protect themselves?
      - What's the contribution of the open source community?

      Read more >
    • The Case for Continuous Open Source Management
      The Case for Continuous Open Source Management Bob Genshaft, Wolters Kluwer; Phil Odence, Black Duck Software Recorded: Mar 22 2017 3:00 pm UTC 45 mins
    • Companies are constantly seeking ways to ensure their application code is secure and effectively managed. For example, M&A acquirers conduct one-time code audits on companies they are buying to avoid legal, operational or security pitfalls. Other organizations are proactive, using an ongoing solution to make sure their application code is secure and well managed on a day-to-day basis. Increasingly, many companies are opting to use both approaches.

      Join Bob Genshaft, Director Strategic Programs at Wolters Kluwer, and Black Duck's VP and General Manager On-Demand Audits Phil Odence for a discussion that will address key open source security and management questions:

      · When is it appropriate to conduct an audit?
      · When should your company consider an ongoing solution?
      · What are the benefits of doing both?

      Read more >
    • Reducing Open Source Risk and Remediation Costs Early in the SDLC
      Reducing Open Source Risk and Remediation Costs Early in the SDLC Pat Durante, Senior Director Education Services; John Beaudoin, Senior Instructional Designer Recorded: Feb 22 2017 4:00 pm UTC 74 mins
    • Increasingly, organizations worldwide are implementing open source security and license risk assessment capabilities early in the software development lifecycle when the cost to remediate issues is lowest. This webinar will demonstrate Black Duck Hub’s effectiveness in providing comprehensive risk assessments when used in combination with our Eclipse IDE plugin, Build Tool, and CI Tool integrations. Additionally, we'll review valuable new features in Black Duck Hub 3.5.
      You’ll also learn:
      - How to improve the accuracy of your open source inventory by leverage open source dependency discovery techniques for build tools and package managers
      - Options for incorporating Hub scanning into your Continuous Integration environments
      - How to track remediation tasks using the Hub-Jira integration
      - How to streamline your component review process
      - Use cases for scanning binary repositories such as Artifactory

      Read more >
    • Risk-Ranking Open Source Vulnerabilities
      Risk-Ranking Open Source Vulnerabilities Mike Pittenger, VP Security Strategy, Black Duck Recorded: Jan 19 2017 4:00 pm UTC 43 mins
    • Increase security effectiveness and maintain dev agility

      Three certainties in 2017: organizations worldwide will continue to increase their use of open source software; new open source security vulnerabilities will be discovered; exploits of open source vulnerabilities will occur.

      With dev teams under constant pressure to accelerate application delivery and with security resources often scarce, organizations need more effective ways to determine which open source vulnerabilities to fix first and the options available to reduce risk during remediation.

      Join Black Duck VP of Security Strategy Mike Pittenger as he discusses strategies and emerging best practices for risk-ranking open source vulnerabilities. He will cover:
      - the most important considerations in prioritizing open source security issues
      - ways to determine the risk associated with a discovered open source vulnerability
      - options for dealing with open source security vulnerabilities beyond simply replacing the component

      Read more >
    • The State of Open Source Security
      The State of Open Source Security Bob Canaway, CMO, Black Duck Recorded: Nov 30 2016 4:00 pm UTC 56 mins
    • Open Source software is the foundation for application development today and its use is growing rapidly worldwide because of the development cost reductions and innovation it enables. Black Duck discovers open source in every application it analyzes and finds finds that 35% of the average commercial software application is open source. Home-grown applications typically contain 50% or more open source.

      The dramatic growth in open source use has been accompanied by an array of security and management challenges related to a lack of visibility into and control of the open source in use. Leading organizations are aggressively pursuing ways to continue to increase their use of open source and do so without compromising effective security or management.

      This webinar will present findings from Black Duck's Center for Open Source Research examining open source use, risks, and benefits. Black Duck CMO Bob Canaway will discuss the latest open source threats, usage patterns, governance, and the changing security and management needs as open source expands across the cloud, the Internet of Things, and the digital landscape.

      Read more >