Application Security for Open Source Software
Software is among the most valuable of all corporate assets. It is at the heart of a company's competitive differentiation, and may be the primary value of many mergers and acquisitions. However, access to diverse code resources, combined with pressure to deliver product to market rapidly and cost-effectively, has given rise to the blending of homegrown, commercial and particularly, the widespread use of open source software. While using these multiple resources for code can and does speed a company's development, time to market, and overall innovation, it makes identification and monitoring of unknown and potentially vulnerable software components difficult and the assessment of intellectual property and vulnerability risks more challenging than ever. Companies need to be able to reduce the uncertainty and risk associated with the widespread use of unknown and undocumented open source software and other third-party software that supports their mission critical applications and products.
Palamida was launched in 2003 after our founders learned first-hand what happens when companies don't have full visibility into the code base of their software applications based on Open Source Software. Their experiences inspired them to create a solution to streamline the process of identifying, tracking and managing the mix of unknown and undocumented Open Source that comprises a growing percentage of today's software applications. Palamida is the industry's first application security solution targeting today's widespread use of Open Source Software. It uses component-level analysis to quickly identify and track undocumented code and associated security vulnerabilities as well as intellectual property and compliance issues and allows development organizations to cost-effectively manage and secure mission critical applications and products.