Techweb Digital Library

An Analysis of the Key Market Segments of Application Security for Open Source Software


Click here to download now

Source: Palamida
Date: March 2008
Type: White Paper
Rating: (1)
Save for Later
Email a Colleague
Rate This Asset

Overview: This paper will examine four basic market segments of the emerging Application Security Space for Open Source Software (OSS). Included will be a discussion of available tools and strategies for maximizing safe use of OSS during the software development process so as to maintain a high degree of security in a company's critical software applications and products.

The requirement to create and maintain secure applications is challenging one, requiring detailed understanding of the software development process. In today's software development world, no trend has had a more widespread impact than the use of open source software. Applications built recently (in the last 5 years) are likely to be fifty percent or more comprised of open source software components when measured on a lines of code basis. Open source software is not inherently any more or less secure than other software, but it is more likely to be undocumented. That is, it may have been incorporated into a software application without a review process, and without formal documentation recording its use. Because of this, normal processes of code review, static analysis, and patch updates may not take place, and vulnerabilities may not be addressed. In addition to vulnerability issues, open source software greatly expands the requirement to address the issue of intellectual property infringement since open source software components are licensed under a wide range of terms.

The widespread use of open source code and the potential that it may be undocumented, has led to the need to address application security in a comprehensive fashion. This paper will address the range of tools available, and will introduce an important new strategy to allow maximum leverage of open source software safely and securely during the software development process.

The rest of this paper addresses the spectrum of technologies that can form the basis of a comprehensive application security strategy for the use of open source, and deliver the benefits of open source software.

DOWNLOAD NOW

Not what you're looking for? Search again
Go Advanced »
VENDOR INDEX 0-9 | A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z

View All Categories

Business Intelligence : Analytics, Business Process Management, Content management, Dashboards, Data Mining, Performance Management, Databases, Datamarts/Data Warehouses, Information Management, Knowledge Management, Data Quality

Development : Open Source, Windows/.NET, Web Development, Security, Mobility, Java, High Performance Computing, Embedded Systems, Development Tools, Database, Architecture & Design, C/C++

Government : Cloud/SaaS, Leadership, Information Management, Federal, Mobile & Wireless, State & Local, Enterprise Applications, Security, Policy & Regulation, Enterprise Architecture

Hardware : Virtualization Hardware, Windows Servers, Utility/On-demand Computing, Unix/Linux servers, Supercomputers, Peripherals, Macintosh, Handhelds/PDAs, Grid/Cluster Computing, Desktops/PCs, Data centers, Blades, Processors

Healthcare : Interoperability, Administration systems, Clinical information systems, Electronic medical records, The Patient, Security & Privacy, Leadership, Policy & Regulation, Mobile & Wireless

Infrastructure : ATM, Ethernet/Gigabit Ethernet, Frame relay, IPv6, Traffic Management, Network/Systems Management, PBXs, Printers, Remote Access, Routers, Switches, UPS, VPNs, WAN Optimization/Acceleration, Wide Area File Services

Internet : B2B, B2C, Browsers, E-Business/E-Commerce, E-retail, Google, Social Business, Internet Security, Search, Social Networks, Traffic Reporting/Monitoring, Web 2.0, Web Development, Internet Policy

Management : Career Development, Training, Small-Medium Business, Salary/Compensation, ROI/TCO, Regulation/Compliance, Recruiting, Personnel Management, Outsourcing, Legal, H-1B, Executive Insights/Interviews, Workplace Trends

Mobility : WLAN, Wireless Security, Wi-Fi/WiMax, Wi-Fi VOIP, Smartphones, 3G Wireless/Broadband, Muni Wireless, Mobile Messaging, Mobile Business, Fixed Mobile Convergence, 802.11x, RFID

Personal Tech : Blackberry, Bluetooth, Bluray, Digital Cameras, Digital Music, Digital Rights Management, Virtual worlds, iPhone, iPod, Peripherals, Smartphones, TVs/Home Theater, Global Positioning Systems

Security : Security Administration, End user/Client Security, Encryption, Cyberterror, Attacks/Breaches, Application Security, Antivirus, NAC, Perimeter Security, Privacy, Vulnerabilities and Threats, Storage Security, Intrusion Prevention

Services : Telecom/Voice Services, Business Process Outsourcing, Business Services, Disaster Recovery, Systems Integration, Hosted Storage, Internet/Data Services, Outsourcing, Software as a Service, Hosted Applications

Software : Web Services, Service Oriented Architecture, Server Virtualization, Productivity Applications, Operating Systems, Open Source, Linux, Hosted Software/Applications, ERP, Development Tools, Databases, Database Applications, CRM, Business Systems Management, Integration, Application Optimization

Storage : Data protection, Disaster Recovery, Removable/Portable Storage, Security, Storage Fabrics, Storage Systems, Virtualization

Telecom : VOIP, Unified Communications, Voice services, PBXs, Internet policy, Presence, Collaboration Systems, Business, Regulation, Call Centers

Windows/Microsoft : Applications, Internet Explorer, Microsoft Company News, Security, Open Source, Operating system, Office Suite

Today On TechWeb

Featured Content Business at the Speed of Virtualization
Visit AMD's Business at the Speed of Virtualization Briefing Center, and discover all you need to know about virtualization. Click here for exclusive access to white papers, webcast, videos and more. Read more…

More On Enterprise_Software

Blogs