Quantcast
 
Search for: Search what?
Nov 25, 2009  
 Sections
Latest New Product News
Industry Market Trends
Green & Clean News
Association & Government News
Adhesives and Sealants
Agricultural and Farming Products
Architectural and Civil Engineering Products
Automatic ID
Chemical Processing and Waste Management
Cleaning Products and Equipment
Communication Systems and Equipment
Computer Hardware and Peripherals
Construction Equipment and Supplies
Controls and Controllers
Display and Presentation Equipment
Electrical Equipment and Systems
Electronic Components and Devices
Explosives, Armaments and Weaponry
Fasteners and Hardware
Fluid and Gas Flow Equipment
Food Processing and Preparation
Health, Medical and Dental Supplies and Equipment
HVAC
Labels, Tags, Signage and Equipment
Laboratory and Research Supplies and Equipment
Lubricants
Machinery and Machining Tools
Material Handling and Storage
Materials and Material Processing
Mechanical Components and Assemblies
Mechanical Power Transmission
Mining, Oil Drilling & Refining
Mounting and Attaching Products
Non-Industrial Products
Optics and Photonics
Packaging Products & Equipment
Paints and Coatings
Plant Furnishings and Accessories
Portable Tools
Printing and Duplicating Equipment
Retail and Sales Equipment
Robotics
Safety and Security Equipment
Sensors, Monitors and Transducers
Services
Software
Test and Measuring Instruments
Textile Industry Products
Thermal and Heating Equipment
Timers and Clocks
Transportation Industry Products
Vision Systems
Waste Handling Equipment
Welding Equipment and Supplies
 Press Releases
Products in the News
Company News
Mergers & Acquisitions
People in the News
Literature & Websites
 Resources
News Delivery Options
Browse Categories
Browse Companies
Mobile Edition
PR Resources
Licensing
Advertising
How to Write an effective Press Release
Trade Associations
Small Business Support
MEP
Advertisement
Tempco Electric Heater Corporation
Designs and Manufactures Heating Elements, Temperature Sensors and Controls, and Turnkey Process Heating Systems. Thousands of products including accessory items are available from stock. Request our 864 page Visionary Solution catalog for product and engineering information.

Service identifies and reports open source vulnerabilities.


May 22, 2007 - Vulnerability Reporting Solution (VRS) works seamlessly with IP Amplifier(TM) code audit compliance solution to identify, prioritize, and report known vulnerabilities within open source code used in customers' projects. It pinpoints use of open source content and reports on known vulnerabilities based on aggregated information from multiple sources. Solution complements vulnerability analysis implementations and includes library with 3 Tb worth of content.

(Archive News Story - Products mentioned in this Archive News Story may or may not be available from the manufacturer.)
 See related product stories
Market Reports promote telecom growth opportunity management.
Service provides reports of IT industry analysts' attitudes.
Service manages and monitors mobile Internet traffic.
Web Analytics Service delivers key traffic changes via email.
Software/Service analyzes audio for call centers.
 See more product news in:
Services
 Tools for you
del.icio.us DIGG  
Facebook Reddit
StumbleUpon Twitter
Print This Page E-Mail Story
Watch_Company  Save Story
View Company Profile
Company web site 
More news from this company

Advertisement
More Tools and information
Search for suppliers of
Analytical Services
Join the forum discussion at:
 Engineers Lounge
 Newsletters
Your Gateway to a Fast Changing World
Product News Alerts
Receive similar stories and other customized news to keep you in the know on the products shaping industry.
Subscribe Free Today
Subscribe   View Sample
Industry Market Trends
Has Got It
  • Latest developments
  • Trends
  • Best practices
  • Opinions & Commentary
Get Ahead. Get IMT.
Subscribe Free Today
Subscribe   View Sample
 See more related product stories:
Optimization Services address network changes/operation.
Data Service provides real-time analysis of ethanol markets.
Service provides audio search and speech analytics.
Assessment Service locates causes of critical data loss.
Service monitors and analyzes communications expenses.


Palamida Launches Open Source Vulnerability Reporting Solution


New Solution Enhances IT Governance by Pinpointing Known Security Risks in Open Source Code

SAN FRANCISCO, April 23 - Gartner SYMPOSIUM/ITxpo - Palamida(TM), the leader in software intellectual property management solutions and audit services, today announced that it has extended the reach of its extensive compliance library and launched a new service, the Vulnerability Reporting Solution (VRS). VRS works seamlessly with Palamida's code audit compliance solution, IP Amplifier(TM), to identify, prioritize, and report known vulnerabilities within open source code used in customers' projects.

Access to readily available code resources, geographically distributed development teams, and increasing time-to-market pressures have given rise to the blending of homegrown, third-party and open source components. The sheer size of today's typical software projects coupled with the number of contributing developers makes it difficult and time consuming for companies to get an accurate assessment of their software assets: What do they have? Where did it come from? What are its intellectual property and security risks?

Thorough risk mitigation calls for more than just firewalls and virus scanning, it requires code level protection against legal, financial and security risks -- it requires solutions robust enough to identify software intellectual property challenges and known vulnerabilities in the code base.

Code Level Risk Mitigation

Existing vulnerability analysis solutions scan customers' proprietary code to identify potential vulnerability holes due to coding practices such as buffer overflow and similar problems. The VRS complements these tools to further enhance the IT Governance process by both pinpointing the use of open source content and reporting on known vulnerabilities based on aggregated information from many sources.

"Successful IT Governance requires risk mitigation at the code level," said Mark Tolliver, CEO of Palamida. "By combining our scanning and detection technology with the excellent content available through repositories such as the National Vulnerability Database, we are able to bring a new level of transparency and confidence to enterprise use of open source software."

Enhancing the Value of Existing Solutions

The VRS is the perfect complement to vulnerability analysis implementations and further extends the breadth and depth of Palamida's existing compliance library -- the industry's largest and most comprehensive database of its type.

"Due to the nature of our business, we are committed to both security and efficiency," notes Stephen Chen, Managing Director of SEC Ventures. "Palamida's Vulnerability Reporting Solution delivers the depth and insight necessary for us to rectify any potential security issues, if found, in a quick and efficient manner."

"As an open source technology with a huge user base, it's very important to us to spot any new security vulnerabilities immediately," said Ron Park, VP of Engineering at MuleSource. "Palamida's VRS enables our development team to track and remediate any open source vulnerabilities as they arise -- giving us the ability to proactively address them, rather than react to them. Palamida's VRS provides us with a lot of value."

Composed of 3 Terabytes worth of content, Palamida's library contains over 140,000 OSS projects, 780,000 versions, 7 billion source code snippets, 10 million Java namespaces, 500 million binary file IDs, and Java, C/C++, Perl, Python, PHP, C#, and VB signatures, among other components.

The VRS provides relevant and timely information on open source vulnerabilities by leveraging data from the National Vulnerability Database (NVD), a comprehensive cyber security database sponsored by the Department of Homeland Security, run by the National Institute of Standards and Technology, with Common Vulnerability and Exposure (CVE) data from The MITRE Corporation. The NVD integrates all publicly available US government vulnerability resources and provides references to industry resources for the purpose of assisting with remediation efforts. The NVD currently contains over 23,700 known vulnerabilities in total, 89 US-CERT issued alerts, and 1,900 US-CERT vulnerability notes. There are an average of 19 new CVEs added to the NVD each day.

About the Company

Palamida enables organizations to manage the growing complexity of multi- source development environments by answering the question, "What's in your code?" Through detailed analysis of the code base customers gain insight into their code inventory -- a critical component of quality control, risk mitigation, and vulnerability assessment.

Palamida was founded in 2003, offering market leading solutions and services that accelerate the adoption of open source within the enterprise environment by eliminating legal and vulnerability concerns associated with its use. Customers include Avaya, Cisco Systems, EMC, and Microsoft, among others. Read Palamida's blog at www.palamida.com/blog or for more information visit www.palamida.com.

CONTACT: Melisa Bleasdale of Palamida, +1-415-777-9400 x140, or cell, +1-408-219-1969


Contacts:

General Information:
Melisa Bleasdale
USA
Phone: 415-777-9400 ext 140
Company Information:
Name: Palamida, Inc.
Address: 215 Second Street, Ist floor
City: San Francisco
State: CA
ZIP: 94105
Country: USA
Phone: 415-777-5800
http://www.palamida.com

More New Product News from this company:
Software automates code audit process.

Other News from this company:
Palamida and OGIS Form Partnership to Deliver Intellectual Property Management Solutions Throughout Japan
Palamida and Open Solutions Alliance Ensure the Integrity of First Interoperability Prototype
Palamida Announces the Addition of the GPL v3 Analyzer Functionality and Online GPL Resource Center
Palamida Extends IP Amplifier's(TM) Day One Reporting of Open Source Intellectual Property and Security Risks
Palamida and Merlin Announce Strategic Partnership to Enable Safe Adoption and Use of Open Source in the Federal Market
Palamida Simplifies Open Source Adoption with Borland® Gauntlet(TM) Continuous Build Technology Solution



[Get Copyright Permissions]
Click here for copyright permissions!
Copyright 2009 Thomas Publishing Company


 

Post a comment about this story

Name:
E-mail:
(your e-mail address will not be posted)
Comment title:
Comment:
 
Category Advertisements
ThomasNet News Advertisers

Designers, manufacturers & distributors of Cleanrooms, equipment and supplies

TIMING BELTS & PULLEYS
Advertisement
Chemir Analytical Services
ISO 9001:2000 certified chemical analysis & chemical testing services. Deformulation (reverse ... more
S & N Labs
Research & testing laboratories. Testing services include medical device analysis, pharmaceutical & ... more
Mo-Sci Corp.
AS 9100B: 2004 & ISO 9001:2000 certified manufacturer & distributor of standard & custom glass & ... more
IMR Test Labs
A national firm offering a complete scope of materials research & testing services, including ... more
Micromeritics Instruments Corp.
ISO 9001:2000 certified custom manufacturer of scientific analytical instruments & laboratory ... more
ASR Corp.
Mechanical engineering services including design, CAD/CAM, CFD, solid modeling, layout, drafting, ... more
Home  |  My ThomasNet News  |  Industry Market Trends  |  Submit Release  |  Advertise  |  Contact News  |  About Us
Brought to you by Thomasnet.com        Browse ThomasNet Directory

News provided by ThomasNet News® (TNN). TNN is a comprehensive source of new and timely product information in the industrial marketplace. TNN supplies new product information to the web sites, e-marketplaces and print publications that serve the industrial marketplace. For press release submissions please go to http://news.thomasnet.com/submitpr.html. BY ACCESSING, BROWSING AND/OR USING THIS WEB SITE AND/OR ANY WEB SITES PROVIDED BY ProductNews.com, YOU AGREE TO BE BOUND BY THE TERMS OF USE AGREEMENT.

Copyright © 2009 Thomas Publishing Company
Terms of Use - Privacy Policy



1.39