Open Source
Open Source news, information, and how-to advice
The good, the bad & the ugly of using open source code components
Component use in development is here to stay. But so are the vulnerabilities lurking in these code snippets. What do developers think about this? Are they concerned, are they frustrated? What’s their take on this problem? We recently...
video
What is Kubernetes?
In this 90-second video, learn about Kubernetes, the open-source system for automating containerized applications, from one of the technology's inventors, Joe Beda, founder and CTO at Heptio.
Open source software security challenges persist
Using open source components saves developers time and companies money. In other words, it's here to stay. Here's a look at what it will take to improve open source security.
video
Managing open-source mobile security and privacy for activists worldwide | Salted Hash Ep 18
Nathan Freitas, who heads The Guardian Project, talks with host Steve Ragan and senior writer J.M. Porup about the group's easy-to-use secure apps, open-source software libraries, and customized mobile devices being used around the...
Are the BSDs dying? Some security researchers think so
To few eyeballs on code is a security issue. Can FreeBSD, OpenBSD, and NetBSD survive?
What do open source maintainers know about security?
Open source consumers and maintainers were asked about their security expertise.
Don't build security tools, build developer tools instead
Stop building security tools that think about dev, and start building dev tools that handle security.
video
The Rust language: Developing safer software
Get up to speed quickly on newcomer Rust, designed to create fast, system-level software. This two-minute animated explainer shows how Rust bypasses the vexing programming issues of memory and management.
Is 'secure open source component use' an oxymoron?
Component use in development isn’t going away, and neither is its accompanying risk.
Security starts at source code — in the cloud
Enterprises are overwhelmed, spending more every year and still losing. Something is missing. By ignoring the root cause of the issue, vendors are simply stacking more and more software on top the same post-deployment problem.
What is the Heartbleed bug, how does it work and how was it fixed?
The mistake that caused the Heartbleed vulnerability can be traced to a single line of code in OpenSSL, an open source code library. Here's how Heartbleed works and how to fix it if you have an unpatched server.
Malicious code in the Node.js npm registry shakes open source trust model
Bad actors using typo-squatting place 39 malicious packages in npm that went undetected for two weeks. How should the open source community respond?
Outside IT, few aware of projected skills gap to impact security by 2019
Teaching computer science is a first step toward building the next cybersecurity workforce
5 things you need to know about Stack Clash to secure your shared Linux environment
Qualys shows that attackers can locally exploit the privilege escalation vulnerability to gain root access over Linux, Solaris and BSD machines. This is bad news for Unix-based servers, and even more so for multi-tenant environments.
Open source security risks persist in commercial software [Infographic]
Black Duck’s second annual Open Source Security and Risk Analysis report shows that commonly used infrastructure components have high-risk vulnerabilities.
How to track and secure open source in your enterprise
Your developers are using open source — even if you don't know about it. Here's how to take control and why you need to.
All aboard the blockchain train
Blockchain gains attention as its uses are tested across payment platforms.
Cisco and Apache issue warnings over Zero-Day flaw being targeted in the wild
Cisco's Talos says they've observed active attacks against a Zero-Day vulnerability in Apache's Struts, a popular Java application framework. Cisco started investigating the vulnerability shortly after it was disclosed, and found a...
-
White Paper
-
White Paper
-
White Paper
-
Research/Infographic
Sponsored -
White Paper
Sponsored Links