Fact Sheet

About the Company

Palamida enables organizations to manage the growing complexity of multi-source development environments. Through detailed analysis of the code base customers gain insight into their code inventory and their bill of materials; what they have, whether they can use it, and whether or not it is secure -critical components of quality control, risk mitigation, and vulnerability assessment.

Palamida was founded in 2003 to offer market leading solutions and services that accelerate the adoption and successful use of open source within the enterprise environment. Customers include Avaya, Cisco Systems, EMC, Microsoft, Sterling Commerce, VMWare, and Wells Fargo, among others.

Market Need

Given the intense focus on information security and privacy, most organizations today have adopted a stringent set policies and tools designed to make their networks and information as secure as possible. These measures range from training and best practices, to sophisticated firewalls and intrusion detection systems. But at the heart of any computer infrastructure is the software that controls the applications, the flow of information, and the access to information. No network can be secure if the applications within it are not designed and maintained to ensure secure operation.

The requirement to create and maintain secure applications is challenging one, requiring detailed understanding of the software development process. In today's software development world, no trend has had a more widespread impact than the use of open source software. The experience of the Palamida professional services team indicates that applications built recently (in the last 5 years) are likely to be fifty percent or more comprised of open source software components when measured on a lines of code basis. Open source software is not inherently any more or less secure than other software, but it is more likely to be undocumented. That is, it may have been incorporated into a software application without a review process, and without formal documentation recording its use. Because of this, normal processes of code review, static analysis, and patch updates may not take place, and vulnerabilities may not be addressed. In addition to vulnerability issues, open source software greatly expands the requirement to address the issue of intellectual property infringement since open source software components are licensed under a wide range of terms. The widespread use of open source code and the potential that it may be undocumented, has led to the need to address application security in a comprehensive fashion. Palamida products and services complement existing application security techniques and deliver fast and accurate analysis of code content, and resulting business and security risks.

Products

Palamida Product Line and Solutions Overview

Don't think you're applications are secure, know they're secure! Only with Palamida can you discover undocumented open source software and provide information on known vulnerabilities and intellectual property rights that pose the greatest risk to your organization. Our software solutions quickly give both relevant compliance alerts as well as precise identification and location of open source use and remediation information you need to manage and mitigate the vulnerabilities in your applications.

• Palamida Enterprise Edition

• Our Enterprise Edition EE provides security and intellectual property protection against the use of undocumented open source software.
• It works by automatically identifying what open source software you're using, how much you're using, location within your global code base and provides other critical information: description, associated vulnerabilities, licenses and copyrights as well as patch and remediation updates.
• EE provides security and intellectual property protection against the use of undocumented open source software.
• It works by automatically identifying what open source software you're using, how much you're using, location within your global code base and provides other critical information: description, associated vulnerabilities, licenses and copyrights as well as patch and remediation updates.

• Palamida Standard Edition

• Our Standard Edition SE is focused on identifying, managing and reporting on open source software use and associated vulnerabilities, while providing relevant patch and remediation information.
• It works by accurately identifying all versions of the open source embedded inside applications and provides you with the most critical vulnerability information that could leave you open to data breach, application down-time, and misuse.
• SE is focused on identifying, managing and reporting on open source software use and associated vulnerabilities, while providing relevant patch and remediation information.
• It works by accurately identifying all versions of the open source embedded inside applications and provides you with the most critical vulnerability information that could leave you open to data breach, application down-time, and misuse.

• Palamida Compliance Edition

• CE is focused on uncovering and cataloging unknown open source components and associates them with license and copyright information.
• Clear, concise inventory, license and license obligation reports help you quickly determine compliance to in-house policy, resolve potential legal and compliance risks.

Investors

Executive Team