Greg Olson, Senior Partner at open source consulting firm Olliance Group and Bart Copeland, President and CEO of ActiveState, the dynamic languages company present an informative webinar to:
* Investigate legal, operational and market risks associated with open source
* Address common pitfalls with open source licensing
* Identify proven tips for creating an open source governance program
* Explore commercial open source options to mitigate open source legal and operational risks
* Share effective steps to protect your organization against costly infringements
Four Steps to Creating an Effective Open Source Policyiasaglobal
A policy is a set of rules and guidelines for using and managing OSS in your organization. To be effective, it must cover all the essential aspects of managing OSS, yet it must be succinct and easily understood; otherwise nobody will read it, much less follow it
Winning the Cage-Match: How to Successfully Navigate Open Source Software iss...Black Duck by Synopsys
A blow-by-blow discussion of key open source software-related issues and deal points from the point of view of buyer/investor vs. seller/investee. Understanding the key legal and technical risks, as well as strategies for mitigating them, will help you to speed and smooth negotiations, avoid protracted due diligence and get better deal terms, increasing overall value.
Giving your AppSec program the edge - using OpenSAMM for benchmarking and sof...Denim Group
HP Protect 2015 Presentation with Denim Group's John Dickson and HP's Bruce Jenkins - Software security historically has been a bolt-on afterthought, frequently a "nice to do" and not a "must do" activity in many organizations. Despite the obvious need to build security in from the outset, organizations continue to struggle to gain momentum and focus resources in support of a structured and measurable software security assurance program. How can organizations determine the best-fit activities and appropriate resource allocation levels to adequately address software risk? How can security leaders know what other organizations are doing to produce more secure software? This session provides an overview of the Open Software Assurance Maturity Model (OpenSAMM) framework and illustrates how organizations can use it to give their security program the edge necessary to stay competitive in today's DevOps world and need-for-speed go-to-market strategies. The session includes case studies on how organizations are using comparative data and OpenSAMM benchmarking to realize measurable software security improvement.
Originally shared here - https://sessioncatalog.hpglobalevents.com/go/agendabuilder.sessions/?l=19&sid=4026_2744&locale=en_US
Webinar presented by The Linux Foundation and Rogue Wave Software. Professional open source management addresses many aspects of the software development lifecycle, from technical to operational to legal concerns. Key to success with open source is choosing the right means and methods for obtaining support for the open source in your software portfolio, and understanding how to maintain integrated and embedded open source code over time.
A number of interesting legal developments in open source took place in 2016. We’ll examine a few of the top legal news stories and the current real-world risk of open source use as well as a discussion of defensive and offensive uses of open source.
Adam Kessel, principal, Fish & Richardson, P.C. presented, "Patents and Open source Known and Unknown Risks." For more information, please visit our website at www.blackducksoftware.com.
Four Steps to Creating an Effective Open Source Policyiasaglobal
A policy is a set of rules and guidelines for using and managing OSS in your organization. To be effective, it must cover all the essential aspects of managing OSS, yet it must be succinct and easily understood; otherwise nobody will read it, much less follow it
Winning the Cage-Match: How to Successfully Navigate Open Source Software iss...Black Duck by Synopsys
A blow-by-blow discussion of key open source software-related issues and deal points from the point of view of buyer/investor vs. seller/investee. Understanding the key legal and technical risks, as well as strategies for mitigating them, will help you to speed and smooth negotiations, avoid protracted due diligence and get better deal terms, increasing overall value.
Giving your AppSec program the edge - using OpenSAMM for benchmarking and sof...Denim Group
HP Protect 2015 Presentation with Denim Group's John Dickson and HP's Bruce Jenkins - Software security historically has been a bolt-on afterthought, frequently a "nice to do" and not a "must do" activity in many organizations. Despite the obvious need to build security in from the outset, organizations continue to struggle to gain momentum and focus resources in support of a structured and measurable software security assurance program. How can organizations determine the best-fit activities and appropriate resource allocation levels to adequately address software risk? How can security leaders know what other organizations are doing to produce more secure software? This session provides an overview of the Open Software Assurance Maturity Model (OpenSAMM) framework and illustrates how organizations can use it to give their security program the edge necessary to stay competitive in today's DevOps world and need-for-speed go-to-market strategies. The session includes case studies on how organizations are using comparative data and OpenSAMM benchmarking to realize measurable software security improvement.
Originally shared here - https://sessioncatalog.hpglobalevents.com/go/agendabuilder.sessions/?l=19&sid=4026_2744&locale=en_US
Webinar presented by The Linux Foundation and Rogue Wave Software. Professional open source management addresses many aspects of the software development lifecycle, from technical to operational to legal concerns. Key to success with open source is choosing the right means and methods for obtaining support for the open source in your software portfolio, and understanding how to maintain integrated and embedded open source code over time.
A number of interesting legal developments in open source took place in 2016. We’ll examine a few of the top legal news stories and the current real-world risk of open source use as well as a discussion of defensive and offensive uses of open source.
Adam Kessel, principal, Fish & Richardson, P.C. presented, "Patents and Open source Known and Unknown Risks." For more information, please visit our website at www.blackducksoftware.com.
Basic Software License & Copyright Compliance QuizAlan L. Plastow
Is your enterprise fully compliant with software license & copyright compliance? Are you an easy compliance enforcement audit target? Take this simple quiz from The Institute for Technology Asset Management to discover the root causes for common license or copyright-protected product problems that can expose your enterprise to crippling punitive license non compliance audits.
Session contains audio, so be sure to activate speakers.
The frequency of software vendor license audits is skyrocketing. Are you ready? This bulletin discusses why many enterprises are unintentionally out of compliance, and self-audit tactics to help minimize or negate audit penalties.
How to achieve security, reliability, and productivity in less timeRogue Wave Software
This introductory session lays the foundation for boosting the effectiveness of mission-critical systems testing by covering industry best practices for code security, software reliability, and team productivity. For each area, you will learn how to mitigate the top issues by seeing real examples and understanding the tools and techniques to overcome them. This includes: The value of different testing methods; The importance of standards compliance; and understanding how DevOps and continuous integration fit in.
Tony Decicco, Shareholder and Leon Schwartz, Associate both from GTC Law Group & Affiliates presented "You've got your open source audit report, now what? Best practices for companies of all sizes." For more information, please visit our website at www.blackducksoftware.com
CompTIA Managed Services Community Meeting: ChannelCon 2013CompTIA
The CompTIA Managed Services Community focuses on the creation of industry standards and resources to improve managed services marketing and delivery. The group was created to provide networking opportunities among thought leaders, develop managed IT services-specific programs and tools, and generate member-driven initiatives.
Established in 1999 Secon Cyber have a long standing experience of providing class leading cyber security solutions to customers ranging from small to large enterprises.
We continuously strive to innovate and develop solutions to enable our customers and partners to work, play and live safely in the connected world. As part of this commitment we have developed our own Managed Detection and Response Service.
In this session David King will discuss the benefits of an MDR service over a traditional MSSP or SIEM solution.
Companies are constantly seeking ways to ensure their application code is secure and effectively managed. For example, M&A assessors conduct one-time code audits on companies they are buying to avoid legal, operational or security pitfalls. Other organizations are proactive, using an ongoing solution to make sure their application code is secure and well managed on a day-to-day basis. Increasingly, many companies are opting to use both approaches.Join Bob Genshaft, Director Strategic Programs at Wolters Kluwer, and Black Duck's VP and General Manager On-Demand Audits Phil Odence for a discussion that will address key open source security and management questions:
· When is it appropriate to conduct an audit?
When should your company consider an ongoing solution?
· What are the benefits of doing both?
. What does an effective Open Source Policy look like?
Managed Detection and Response (MDR) WhitepaperMarc St-Pierre
Managed detection and response (MDR) solutions benefit from investigative capabilities, particularly as derived and evolved from the digital forensic community. Buyers should thus include investigative experience as a selection factor when reviewing MDR offerings.
Whitepaper from TAG Cyber and OpenText on Managed Detection and Response (MDR): Investigative Capability as a Key Selection Factor.
Tim Mackey is a principal security strategist with the Synopsys Cybersecurity Research Center(CyRC). Within this role, he engages with various technical and business communities to understand how application security is evolving with ever-expanding attack surfaces and increasingly sophisticated threats. He specializes in container security, virtualization, cloud technologies, distributed systems engineering, mission critical engineering, performance monitoring, and large-scale data center operations. Tim takes the lessons learned from these activities and delivers talks globally at conferences like RSA, KubeCon and InfoSec. For more information, please visit www.synopsys.com/software.
Protecting endpoints from targeted attacksAppSense
On this AppSense webinar, guest speaker Chris Sherman, Forrester Research analyst, shared five principles for an effective endpoint security strategy. Anti-virus software isn't enough anymore.
Dan O'Farrell, Sr. Director of Product Marketing for Cloud Computing at Dell, shared how highly-regulated industries have embraced VDI to increase security and reduce costs.
And Bassam Khan discussed how AppSense offers privilege management with just-in-time self-elevation and application control through trusted ownership. This allows you to manage and secure your endpoints while providing a great user experience. And our latest product, AppSense Insight, offers endpoint analytics. Contact us to request a demo at iwanttoknowmore@appsense.com.
During a recent webinar, West Monroe discussed, "The State of Open Source in M&A Transactions."
Based extensive experience in M&A, West Monroe Partners is on the front line when it comes to tech due diligence, and they’ve seen a few trends emerge when it comes to open source and M&A deals. Buyers and seller alike need to understand these trends to get the most value out of any transaction.
For more information, please visit our website at www.synopsys.com/open-source-audit
Technical Due Diligence for M&A: A Perspective from Corporate Development at ...Black Duck by Synopsys
This webinar focuses on the issues related to improper use of open source software and how this can impact M&A and other partnering opportunities. Attendees will learn techniques to uncover potential issues and the benefits of properly managing your software assets to minimize delays and risks. Russell Hartz of SAP’s Corporate Development organization discusses their strategy and perspective on the subject and how they approach this kind of technical due diligence.
OpenLogic and Olliance Group prepared these slides discussing ten elements that are essential to creating and maintaining an effective enterprise open source governance program.
Topics covered include:
- Defining and implementing open source policies
- Securing organizational support
- Taking inventory of open source usage
- Managing open source usage requests and approvals
- Auditing and reporting to ensure ongoing compliance
Basic Software License & Copyright Compliance QuizAlan L. Plastow
Is your enterprise fully compliant with software license & copyright compliance? Are you an easy compliance enforcement audit target? Take this simple quiz from The Institute for Technology Asset Management to discover the root causes for common license or copyright-protected product problems that can expose your enterprise to crippling punitive license non compliance audits.
Session contains audio, so be sure to activate speakers.
The frequency of software vendor license audits is skyrocketing. Are you ready? This bulletin discusses why many enterprises are unintentionally out of compliance, and self-audit tactics to help minimize or negate audit penalties.
How to achieve security, reliability, and productivity in less timeRogue Wave Software
This introductory session lays the foundation for boosting the effectiveness of mission-critical systems testing by covering industry best practices for code security, software reliability, and team productivity. For each area, you will learn how to mitigate the top issues by seeing real examples and understanding the tools and techniques to overcome them. This includes: The value of different testing methods; The importance of standards compliance; and understanding how DevOps and continuous integration fit in.
Tony Decicco, Shareholder and Leon Schwartz, Associate both from GTC Law Group & Affiliates presented "You've got your open source audit report, now what? Best practices for companies of all sizes." For more information, please visit our website at www.blackducksoftware.com
CompTIA Managed Services Community Meeting: ChannelCon 2013CompTIA
The CompTIA Managed Services Community focuses on the creation of industry standards and resources to improve managed services marketing and delivery. The group was created to provide networking opportunities among thought leaders, develop managed IT services-specific programs and tools, and generate member-driven initiatives.
Established in 1999 Secon Cyber have a long standing experience of providing class leading cyber security solutions to customers ranging from small to large enterprises.
We continuously strive to innovate and develop solutions to enable our customers and partners to work, play and live safely in the connected world. As part of this commitment we have developed our own Managed Detection and Response Service.
In this session David King will discuss the benefits of an MDR service over a traditional MSSP or SIEM solution.
Companies are constantly seeking ways to ensure their application code is secure and effectively managed. For example, M&A assessors conduct one-time code audits on companies they are buying to avoid legal, operational or security pitfalls. Other organizations are proactive, using an ongoing solution to make sure their application code is secure and well managed on a day-to-day basis. Increasingly, many companies are opting to use both approaches.Join Bob Genshaft, Director Strategic Programs at Wolters Kluwer, and Black Duck's VP and General Manager On-Demand Audits Phil Odence for a discussion that will address key open source security and management questions:
· When is it appropriate to conduct an audit?
When should your company consider an ongoing solution?
· What are the benefits of doing both?
. What does an effective Open Source Policy look like?
Managed Detection and Response (MDR) WhitepaperMarc St-Pierre
Managed detection and response (MDR) solutions benefit from investigative capabilities, particularly as derived and evolved from the digital forensic community. Buyers should thus include investigative experience as a selection factor when reviewing MDR offerings.
Whitepaper from TAG Cyber and OpenText on Managed Detection and Response (MDR): Investigative Capability as a Key Selection Factor.
Tim Mackey is a principal security strategist with the Synopsys Cybersecurity Research Center(CyRC). Within this role, he engages with various technical and business communities to understand how application security is evolving with ever-expanding attack surfaces and increasingly sophisticated threats. He specializes in container security, virtualization, cloud technologies, distributed systems engineering, mission critical engineering, performance monitoring, and large-scale data center operations. Tim takes the lessons learned from these activities and delivers talks globally at conferences like RSA, KubeCon and InfoSec. For more information, please visit www.synopsys.com/software.
Protecting endpoints from targeted attacksAppSense
On this AppSense webinar, guest speaker Chris Sherman, Forrester Research analyst, shared five principles for an effective endpoint security strategy. Anti-virus software isn't enough anymore.
Dan O'Farrell, Sr. Director of Product Marketing for Cloud Computing at Dell, shared how highly-regulated industries have embraced VDI to increase security and reduce costs.
And Bassam Khan discussed how AppSense offers privilege management with just-in-time self-elevation and application control through trusted ownership. This allows you to manage and secure your endpoints while providing a great user experience. And our latest product, AppSense Insight, offers endpoint analytics. Contact us to request a demo at iwanttoknowmore@appsense.com.
During a recent webinar, West Monroe discussed, "The State of Open Source in M&A Transactions."
Based extensive experience in M&A, West Monroe Partners is on the front line when it comes to tech due diligence, and they’ve seen a few trends emerge when it comes to open source and M&A deals. Buyers and seller alike need to understand these trends to get the most value out of any transaction.
For more information, please visit our website at www.synopsys.com/open-source-audit
Technical Due Diligence for M&A: A Perspective from Corporate Development at ...Black Duck by Synopsys
This webinar focuses on the issues related to improper use of open source software and how this can impact M&A and other partnering opportunities. Attendees will learn techniques to uncover potential issues and the benefits of properly managing your software assets to minimize delays and risks. Russell Hartz of SAP’s Corporate Development organization discusses their strategy and perspective on the subject and how they approach this kind of technical due diligence.
OpenLogic and Olliance Group prepared these slides discussing ten elements that are essential to creating and maintaining an effective enterprise open source governance program.
Topics covered include:
- Defining and implementing open source policies
- Securing organizational support
- Taking inventory of open source usage
- Managing open source usage requests and approvals
- Auditing and reporting to ensure ongoing compliance
OpenLogic provides insights into how to navigate the economic downturn using open source. The deck also provides poll results of how enterprises view OSS in this environment. Stream the presentation here http://go.openlogic.com/pages/start/download-webinars/index.html?Campaign_Id=1321&Activity_Id=2901&rsc=Webinar.CuttingCostsWithOSS.zip
Strategies for Commercial Software Developers Using Open Source Code in Propr...Mary Lou Wakimura
Commercial software developers are often drawn to open source code to help deliver a low cost and flexible product that can quickly be brought to market. While there are benefits, there are also risks and pitfalls. With the growth and influence of free software licensing, some have been asserting the General Public License (GPL) violations in litigation to attempt to gain an advantage. Please join us as we explore these issues and discuss strategies to protect your product from litigation and to evaluate whether your new product will be strengthened or weakened by the integration of open source software, and in particular the GPL.
Gain insight into:
- Reach of the influential free software license GPL;
- Emerging risk of copyright trolls in open source;
- Risk of Free Software Foundation sponsored litigation in response to GPL violations;
- Contours of what constitutes a derivative work employing Linux code in the context of the GPL; and
- Lessons learned from the Hellwig vs. VMware case.
Set Your Content Free: Why You Need an Open-source StrategyMatt Asay
Open source is permeating the enterprise on a massive scale, including the content-management market. Given the potential to lock one's content into a proprietary vendor/repository, CIOs should consider open standards and open source for their next ECM project.
Why Choose the Nalpeiron Licensing Service vs. Building Your OwnJon Gillespie-Brown
Historically many ISVs have built their own licensing due to lack of flexible or cost-effective enough solutions to their needs, but with the advent of standards today, such as web services and new vendors like Nalpeiron who offer a modern hosted paradigm, many of those previous barriers to outsourcing have been removed.
So why has licensing lagged behind?
Download this white paper now to discover the real costs, risks, and issues associated with Software License Management solutions.
Managing the Software Supply Chain: Policies that Promote Innovation While Op...FINOS
Jeff Luszcz, Flexera Software: Managing the Software Supply Chain: Policies that Promote Innovation While Optimizing Security and Compliance.
Do you build software, sell software consulting services, or contribute to the open source community? Understanding your software supply chain and learning the best way to manage them is worth your time. As the consumption of open source and other third party software increases, companies who know how to manage and influence the supply chain have a competitive advantage over those who don’t do it as well. Developers, Architects, and IP attorneys need to understand the long term impact of leveraging Open Source and Third Party software in their enterprise software, internal tools and web services. Join Jeff Luszcz, VP of Product Management at Flexera, as he walks through best practices to manage OSS in the financial services world.
Outbound Licensing Strategies: Is Open Source the Right Model for Your Company?Jennifer O'Neill
In the past, companies that invested heavily in software development had the objective of either licensing that software commercially, or enhancing their internal IT environments. There is now a third option: releasing that code under an open source license in order to encourage industry-wide adoption of its functionality, gain valuable input from external experts, and better integrate that software with other common components.
While Android and open source software not-so-quietly revolutionized the mobile industry, Enterprise IT organizations have taken notice. “The consumerization of IT” and ubiquity of mobile devices are forcing a transformation of Enterprise IT infrastructures, something that Geoffrey Moore refers to as “Systems of Record” and “Systems of Engagement.” These new infrastructures will be built largely with open source components. But whether developing a new device or new IT infrastructure, development with open source software is not business as usual. Choosing and modifying components from external sources, integrating with proprietary code, evaluating licenses and community viability, etc., require new processes for choosing components and new ways of providing control and visibility.
In this presentation Peter Vescuso will discuss the issues of OEM development with Android and open source, where and how it impacts Enterprise IT, and for both how to provide the control and visibility required by management while giving developers the freedom they need to create and innovate.
#OSSPARIS19 - Understanding Open Source Governance - Gilles Gravier, Wipro Li...Paris Open Source Summit
Stratégie, risques liés à l'adoption de l'open source... Comment un modèle de gouvernance fort peut rendre votre parcours open source le plus efficace.
Open Source and its role in a new IT ecosystemBruno von Rotz
Bob Gett presents Optaros' view on how Open Source influences the overall IT eco system and how it's a key ingredient of many of the new business models we currenlty see developing
Implementing and Managing an Open Source Compliance Program: A Crash CourseFINOS
Ibrahim Haddad, Samsung Research America: Implementing and Managing an Open Source Compliance Program: A Crash Course.
The past decade has witnessed an unprecedented adoption of open source software by enterprises for the various advantages it offers. This massive adoption of open source software came with legal and compliance responsibilities. Enterprises and development organizations have since then started establishing policies around open source usage (and contribution), and implementing engineering development processes to insure that software products that deploy are in compliance. This presentation provides a guide to doing compliance the right way (one of many) with an overview on setting up an open source compliance program and institutionalizing best practices.
Course Outline (subject to change based on time allocation)
• Overview of open source compliance
• Failure to comply
• Lessons learned from non compliance cases
• Overview of the compliance program
• Compliance challenges and solutions
• Achieving compliance: roles and responsibilities
• Sample compliance process
• Tools and automation
• Responding to compliance inquiries
Audience
Anyone involved in bringing software into the organization and anyone involved in developing and distributing products or interfacing with customers, including
• Corporate Management
• Engineering
• Product Management, Project Management, and Process Management
• Testing, Quality Assurance, Configuration Management and Logistics
• Law Department
• Purchasing / Supply Chain
Lawyers and Licenses in Open Source-based Development: How to Protect Your So...Sonatype
You can build better software faster with Open Source Software (OSS) components, but you must ensure that your organization meets component-licensing terms. Violating the terms of an open source license is copyright or intellectual property infringement and can lead to legal and financial penalties. This white paper explains why certain types of open source licenses create legal risk and describes win-win methods for avoiding risk that give lawyers the confidence they need while giving developers the speed they need.
Open Source is now in day to day use in Governments across Europe – some with great success, but others are still using it to a degree well below its opportunity level. But why is this? Is it because of lack of understanding or trust, is it because of lack of political will or leadership, is it because it is just too difficult because of past technical decisions? Or all of these?
Are the blockers to progress technical, financial or political? Or all of these?
A new report to be published by the London School of Economics for the UK Government, and which will be previewed during the talk, examines the TCO of Open Source for Government, but also examines the wider drivers and opportunities. Maybe here are the clues on just how we can increase the momentum for its use across Government.
Similar to Safeguarding Against the Risks of Improper Open Source Licensing - Valuable Lessons for Software and Hardware Vendors (20)
Many companies implementing Machine Learning (ML) have learned that noise and other errors in the data set can cause stability issues resulting in time loss and headache.
Robust algorithms are under-appreciated, particularly by people new to data analysis. This talk will review the basic idea of robust or non-parametric algorithms and look at some of the more important named algorithms, as well as looking at how to apply the philosophy of robustness to any problem.
Talk originally given on July 7, 2017 at the PyData Seattle conference by Tom Radcliffe, Ph.D., P.Eng., VP Engineering, ActiveState
ActiveState - The Open Source Languages CompanyActiveState
According to BlackDuck’s recent survey*, over three-quarters of all enterprises run on some form of open source software. Many use open source within their mission-critical IT portfolios, whether they know it or not - and open source languages are a major component of this open source usage.
However, unsupported open source is often insufficient for SMB-to-large corporations in today’s multi-faceted and complicated technology landscape. Many enterprises remain wary of open source, citing multi-platform support, indemnification, legacy versions, and commercial support as critical to their software success. ActiveState will be building for support both community users and enterprises with the introduction of ActiveRuby, ActiveNode, ActiveGo, and ActiveLua. These new languages are in addition to ActiveState’s popular ActivePerl, ActivePython, and ActiveTcl.
Join ActiveState CEO Bart Copeland and Director of Engineering Tom Radcliffe on November 17th as they discuss these enterprise needs and how ActiveState’s newest open source enterprise language distributions for Ruby, Node.js, Go, and Lua will help enterprises remain agile, innovative, and secure.
*http://www.slideshare.net/blackducksoftware/2015-future-of-open-source-survey-results
We had a tremendous response to our first open source survey and on behalf of ActiveState I’d like to thank the 867 people who gave their time and thoughts. Our infographic has some great highlights from the survey,
Read more about the survey results here: http://www.activestate.com/blog/2016/09/activestate-2016-open-source-survey
This summer, we sent out a survey to all our ActiveTcl downloaders and customers. We wanted to gain some insights into how and why people use ActiveTcl. As a result, we’ve created a handy little infographic summarizing the survey results.
Presentation from Lua Workshop 2016. LPeg is a fantastic text processing tool. It has a number of useful applications, including the parsing of source code for syntax highlighting, defining grammars for templating engines, and much more. Come learn how to leverage LPeg in practical ways in order to solve real-world problems.
Komodo 10.1 is out and it’s better than ever! Building on the recent launch in May of Komodo 10, which included integrations with Cordova and Phonegap and remote Chrome debugging, Komodo 10.1 has even more tools and services to help developers get more done. Join Komodo Lead Developer Nathan Rijksen and Komodo Developer Carey Hoffman as they talk what’s new in 10.1 and why it remains the best IDE for web and mobile developers. Some of the topics they’ll cover include:
- NEW tutorial tool (Demo of pre-built tutorials and how to build your own!)
- NEW keybindings
- Improved publishing
- General overview of Komodo X
- Live Q&A with the devs!
Millions of developers around the world use Tcl for rapid prototyping, scripted applications, GUIs, and testing. It’s everywhere around us - from routers, to network management tools to semiconductors. Yet Tcl remains one of the most unheralded and quietest languages in programming. But our intelligence tells us this is changing. Not only has Tcl jumped nearly 20 spots in the Tiobe rankings this month but it continues to be used in mission critical applications powering the world around us.
Join ActiveState Director of Engineering Tom Radcliffe and guest speaker Clif Flynt, author of “Tcl/Tk For Real Programmers”, as they discuss Tcl’s relevance in the modern world. Some of the topics they’ll talk about include:
- Tcl’s origin story
- Where is Tcl being used today, from AndroWish to EDA
- Use cases for Tcl
- What the future holds for Tcl, including the latest features like TclOO
Earlier this year we sent out an on-line survey to our ActivePerl downloaders. A little over 350 users responded and shared insights into how long they've been using Perl as well as how they are using it. While some results were expected (such as over half of those respondents being in a developer role), one of the more unexpected results that caught our eye was how long people had been using Perl.
http://bit.ly/1t4cMki
Improving Customer Experience Using ActivePerl and ActivePythonActiveState
Perl and Python can be found in any number of places - on websites, in downloadable apps, in systems back-ends, on the cloud, and within enterprise software solutions. Parallels, a leader in virtualization and automation software, supports dynamic languages ActivePerl and ActivePython in its Plesk product to create a more seamless experience for their customers. Quality components and seamless installations make Parallels Plesk Panel, a server automation solution, a great choice for small business customers and hosting providers who require simplicity and reliability, and ActiveState helps to provide a solid solution within Plesk.
Join Blake Tyra, Plesk Panel Product Manager at Parallels, and Jeff Hobbs, Director of Engineering at ActiveState, the dynamic languages experts to learn how to:
* Get to market faster and add easily add functionality with ActivePerl and ActivePython in your software products
* Increase customer experience and satisfaction with language distribution integration
* Reduce QA cycles with ensured quality components
* Eliminate legal risks when distributing Perl and Python in commercial products
There are thousands of programming languages, but even if your organization works in one of the more popular languages, it's likely you will eventually interact with others who are unfamiliar with it. Since you can't be proficient in every programming language under the sun, a language that bridges technologies and allows people to communicate their ideas is needed.
A few programming languages have tried to fill this role over the years, but none holds as much promise as Python.
ActiveTcl 8.5 has become the standard on which people build their Tcl applications, but Tcl 8.6 is just around the corner. Currently in beta, Tcl 8.6 is expected to have a final release in 2011. What new tricks will 8.6 pull out of the hat? Should you start using Tcl 8.6 soon? Join us on January 26, 2011 and find out.
Our resident Tcl expert Jeff Hobbs, Director of Engineering at ActiveState and long-time Tcl community leader and member of the Tcl Core Team, provides an overview of the major features in Tcl 8.6, including Tk. Starting with a new core OO system, going through improvements to string and list handling, and caps it off with lots of extras, this webinar covers the major changes in Tcl 8.6 and how to take advantage of them.
ActiveState, CA, Taking quality products to market faster with enterprise rea...ActiveState
Open source programming languages such as Perl and Python have the highest instance of open source use in an organization at 57% according to a recent Forrester Research survey conducted with Dr. Dobb's readers. As dynamic languages presence and importance increases, organizations will rely more on enterprise-ready dynamic languages to create higher quality products, to take products to market quicker and to conserve development time and costs for core competencies.
Keeping up with Perl: Development, Upgrade and Deployment Options for Perl 5.12ActiveState
With the growth in dynamic languages, Perl still rules the roost as “the duct tape of the Internet.” Now that Perl 5.12 and Perl Dev Kit 9 are available, are you ready to make the move? In this webinar for Perl developers and system administrators, join Jan Dubois, senior Perl developer at ActiveState, and Troy Topnik, technical writer at ActiveState to learn:
* What’s new in Perl 5.12
* What to do with legacy code
* Assess if you need to upgrade
* How to deploy quickly and efficiently
* How to use CPAN and Perl Package Manger (PPM) for managing 3rd party modules
* Deployment choices including web, system, desktop and utility applications
Python & Finance: US Government Mandates, Financial Modeling, and Other Snake...ActiveState
Recently, the US SEC published a proposal for how to address the current lack of transparency of asset-backed securities through changing disclosure requirements to include the provision of a Python computer program. The goal is to capture all the complicated terms of the deal in code that can be used to analyze the cash flows in each deal and how the returns will get split up between different parties. Currently, investors, fund managers, and investment managers receive a complex, textual description of this information in the prospectus, which makes it difficult for them to perform or visualize a rigorous quantitative or if-then analysis of the asset-backed securities.
This all begs the question “Why Python?” One of the answers is that it’s open source and while there are a number of proprietary financial modeling solutions and more than a few trade description languages in use on Wall Street – there is little use asking for openness and transparency from issuers if the interpreter for that code is proprietary in nature. That said, Python has other aspects that make it a good choice for these purposes and has been widely used on Wall Street and in the finance community for financial modeling and number crunching.
At the very least, it’s not enough to have open data, one has to have open tools to fulfill the transparency requirements to establish meaningful use of financial information. Buyers, Sellers and Regulators alike need an open technology means to accurately and efficiently interpret financial information.
This presentation will discuss some of the aspects of Python that make it a good fit for the SEC’s proposal and some of the challenges and the implications of using Python for financial analysis. This presentation will also discuss some opportunities for collaboration between regulators and the open source related to the development of an ecosystem of open source projects that can exploit the availability of this proposed new rich source of financial information.
Best Practices in Porting & Developing Enterprise Applications to the Cloud u...ActiveState
With businesses demanding fast development of applications, IT groups need to answer with rapid development and deployment that drives businesses forward. So with lower upfront costs, ease of deployment and advantages in scalability, cloud computing is enabling IT groups to meet these demands.
But while considering cloud services, IT directors must consider factors such as application portability, security, avoiding vendor-lock in, risk management and regulatory compliance. Whether you're migrating to a public, private, or hybrid cloud, this webinar will help IT groups understand best practices in porting and developing enterprise applications to the cloud.
Join Stephen O’Grady, Principal Analyst with RedMonk and Jeff Hobbs, Director of Engineering at ActiveState, to learn how to:
* Use a standards-based approach to minimize costs and reduce risks
* Leverage dynamic languages such as Python for rapid development
* Create portable and consistent web applications to the cloud
* Understand enterprise solutions to create standards and ensure indemnification
* Create a business case and plan for standards with a dynamic languages approach
Take Quality Products to Market Faster with Enterprise-Ready Dynamic LanguagesActiveState
Lawrence Backman, VP, Quality Assurance at Computer Associates, one of the largest independent software companies in the world, and Jeff Hobbs, Director of Engineering at ActiveState, the dynamic languages experts to learn:
* The value of enterprise-class dynamic languages for developing quality applications faster
* How Computer Associates uses enterprise-ready ActivePerl to save development time and dollars
* Open source licensing considerations and solutions to mitigate risk and ensure compliance
Transcript: Selling digital books in 2024: Insights from industry leaders - T...BookNet Canada
The publishing industry has been selling digital audiobooks and ebooks for over a decade and has found its groove. What’s changed? What has stayed the same? Where do we go from here? Join a group of leading sales peers from across the industry for a conversation about the lessons learned since the popularization of digital books, best practices, digital book supply chain management, and more.
Link to video recording: https://bnctechforum.ca/sessions/selling-digital-books-in-2024-insights-from-industry-leaders/
Presented by BookNet Canada on May 28, 2024, with support from the Department of Canadian Heritage.
Epistemic Interaction - tuning interfaces to provide information for AI supportAlan Dix
Paper presented at SYNERGY workshop at AVI 2024, Genoa, Italy. 3rd June 2024
https://alandix.com/academic/papers/synergy2024-epistemic/
As machine learning integrates deeper into human-computer interactions, the concept of epistemic interaction emerges, aiming to refine these interactions to enhance system adaptability. This approach encourages minor, intentional adjustments in user behaviour to enrich the data available for system learning. This paper introduces epistemic interaction within the context of human-system communication, illustrating how deliberate interaction design can improve system understanding and adaptation. Through concrete examples, we demonstrate the potential of epistemic interaction to significantly advance human-computer interaction by leveraging intuitive human communication strategies to inform system design and functionality, offering a novel pathway for enriching user-system engagements.
Neuro-symbolic is not enough, we need neuro-*semantic*Frank van Harmelen
Neuro-symbolic (NeSy) AI is on the rise. However, simply machine learning on just any symbolic structure is not sufficient to really harvest the gains of NeSy. These will only be gained when the symbolic structures have an actual semantics. I give an operational definition of semantics as “predictable inference”.
All of this illustrated with link prediction over knowledge graphs, but the argument is general.
Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered QualityInflectra
In this insightful webinar, Inflectra explores how artificial intelligence (AI) is transforming software development and testing. Discover how AI-powered tools are revolutionizing every stage of the software development lifecycle (SDLC), from design and prototyping to testing, deployment, and monitoring.
Learn about:
• The Future of Testing: How AI is shifting testing towards verification, analysis, and higher-level skills, while reducing repetitive tasks.
• Test Automation: How AI-powered test case generation, optimization, and self-healing tests are making testing more efficient and effective.
• Visual Testing: Explore the emerging capabilities of AI in visual testing and how it's set to revolutionize UI verification.
• Inflectra's AI Solutions: See demonstrations of Inflectra's cutting-edge AI tools like the ChatGPT plugin and Azure Open AI platform, designed to streamline your testing process.
Whether you're a developer, tester, or QA professional, this webinar will give you valuable insights into how AI is shaping the future of software delivery.
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...Jeffrey Haguewood
Sidekick Solutions uses Bonterra Impact Management (fka Social Solutions Apricot) and automation solutions to integrate data for business workflows.
We believe integration and automation are essential to user experience and the promise of efficient work through technology. Automation is the critical ingredient to realizing that full vision. We develop integration products and services for Bonterra Case Management software to support the deployment of automations for a variety of use cases.
This video focuses on the notifications, alerts, and approval requests using Slack for Bonterra Impact Management. The solutions covered in this webinar can also be deployed for Microsoft Teams.
Interested in deploying notification automations for Bonterra Impact Management? Contact us at sales@sidekicksolutionsllc.com to discuss next steps.
State of ICS and IoT Cyber Threat Landscape Report 2024 previewPrayukth K V
The IoT and OT threat landscape report has been prepared by the Threat Research Team at Sectrio using data from Sectrio, cyber threat intelligence farming facilities spread across over 85 cities around the world. In addition, Sectrio also runs AI-based advanced threat and payload engagement facilities that serve as sinks to attract and engage sophisticated threat actors, and newer malware including new variants and latent threats that are at an earlier stage of development.
The latest edition of the OT/ICS and IoT security Threat Landscape Report 2024 also covers:
State of global ICS asset and network exposure
Sectoral targets and attacks as well as the cost of ransom
Global APT activity, AI usage, actor and tactic profiles, and implications
Rise in volumes of AI-powered cyberattacks
Major cyber events in 2024
Malware and malicious payload trends
Cyberattack types and targets
Vulnerability exploit attempts on CVEs
Attacks on counties – USA
Expansion of bot farms – how, where, and why
In-depth analysis of the cyber threat landscape across North America, South America, Europe, APAC, and the Middle East
Why are attacks on smart factories rising?
Cyber risk predictions
Axis of attacks – Europe
Systemic attacks in the Middle East
Download the full report from here:
https://sectrio.com/resources/ot-threat-landscape-reports/sectrio-releases-ot-ics-and-iot-security-threat-landscape-report-2024/
The Art of the Pitch: WordPress Relationships and SalesLaura Byrne
Clients don’t know what they don’t know. What web solutions are right for them? How does WordPress come into the picture? How do you make sure you understand scope and timeline? What do you do if sometime changes?
All these questions and more will be explored as we talk about matching clients’ needs with what your agency offers without pulling teeth or pulling your hair out. Practical tips, and strategies for successful relationship building that leads to closing the deal.
Search and Society: Reimagining Information Access for Radical FuturesBhaskar Mitra
The field of Information retrieval (IR) is currently undergoing a transformative shift, at least partly due to the emerging applications of generative AI to information access. In this talk, we will deliberate on the sociotechnical implications of generative AI for information access. We will argue that there is both a critical necessity and an exciting opportunity for the IR community to re-center our research agendas on societal needs while dismantling the artificial separation between the work on fairness, accountability, transparency, and ethics in IR and the rest of IR research. Instead of adopting a reactionary strategy of trying to mitigate potential social harms from emerging technologies, the community should aim to proactively set the research agenda for the kinds of systems we should build inspired by diverse explicitly stated sociotechnical imaginaries. The sociotechnical imaginaries that underpin the design and development of information access technologies needs to be explicitly articulated, and we need to develop theories of change in context of these diverse perspectives. Our guiding future imaginaries must be informed by other academic fields, such as democratic theory and critical theory, and should be co-developed with social science scholars, legal scholars, civil rights and social justice activists, and artists, among others.
Key Trends Shaping the Future of Infrastructure.pdfCheryl Hung
Keynote at DIGIT West Expo, Glasgow on 29 May 2024.
Cheryl Hung, ochery.com
Sr Director, Infrastructure Ecosystem, Arm.
The key trends across hardware, cloud and open-source; exploring how these areas are likely to mature and develop over the short and long-term, and then considering how organisations can position themselves to adapt and thrive.
Essentials of Automations: Optimizing FME Workflows with ParametersSafe Software
Are you looking to streamline your workflows and boost your projects’ efficiency? Do you find yourself searching for ways to add flexibility and control over your FME workflows? If so, you’re in the right place.
Join us for an insightful dive into the world of FME parameters, a critical element in optimizing workflow efficiency. This webinar marks the beginning of our three-part “Essentials of Automation” series. This first webinar is designed to equip you with the knowledge and skills to utilize parameters effectively: enhancing the flexibility, maintainability, and user control of your FME projects.
Here’s what you’ll gain:
- Essentials of FME Parameters: Understand the pivotal role of parameters, including Reader/Writer, Transformer, User, and FME Flow categories. Discover how they are the key to unlocking automation and optimization within your workflows.
- Practical Applications in FME Form: Delve into key user parameter types including choice, connections, and file URLs. Allow users to control how a workflow runs, making your workflows more reusable. Learn to import values and deliver the best user experience for your workflows while enhancing accuracy.
- Optimization Strategies in FME Flow: Explore the creation and strategic deployment of parameters in FME Flow, including the use of deployment and geometry parameters, to maximize workflow efficiency.
- Pro Tips for Success: Gain insights on parameterizing connections and leveraging new features like Conditional Visibility for clarity and simplicity.
We’ll wrap up with a glimpse into future webinars, followed by a Q&A session to address your specific questions surrounding this topic.
Don’t miss this opportunity to elevate your FME expertise and drive your projects to new heights of efficiency.
Connector Corner: Automate dynamic content and events by pushing a buttonDianaGray10
Here is something new! In our next Connector Corner webinar, we will demonstrate how you can use a single workflow to:
Create a campaign using Mailchimp with merge tags/fields
Send an interactive Slack channel message (using buttons)
Have the message received by managers and peers along with a test email for review
But there’s more:
In a second workflow supporting the same use case, you’ll see:
Your campaign sent to target colleagues for approval
If the “Approve” button is clicked, a Jira/Zendesk ticket is created for the marketing design team
But—if the “Reject” button is pushed, colleagues will be alerted via Slack message
Join us to learn more about this new, human-in-the-loop capability, brought to you by Integration Service connectors.
And...
Speakers:
Akshay Agnihotri, Product Manager
Charlie Greenberg, Host
GraphRAG is All You need? LLM & Knowledge GraphGuy Korland
Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs.
1. Unifying Large Language Models and Knowledge Graphs: A Roadmap.
https://arxiv.org/abs/2306.08302
2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs:
https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...Ramesh Iyer
In today's fast-changing business world, Companies that adapt and embrace new ideas often need help to keep up with the competition. However, fostering a culture of innovation takes much work. It takes vision, leadership and willingness to take risks in the right proportion. Sachin Dev Duggal, co-founder of Builder.ai, has perfected the art of this balance, creating a company culture where creativity and growth are nurtured at each stage.
6. Poll: What are the biggest challenges you face around integrating open source packages? 0% 10% 20% 30% 40% 50% 60% 70% 80% 1 Challenge % of Respondents Ensure license compliance for elements at distribution time Maintaining code and version consistency across the company Managing support for many open source elements Higher volume of code acquisition decisions Managing participation in public communities
7.
8.
9.
10.
11. Poll: What percentage of open source projects in your organization are currently indemnified? 62% 24% 4% 2% 8% Don't know 0-25% 26-50% 51-75% 76-100%
22. #1 in Open Source Adoption: Dynamic Languages 57% of enterprises using dynamic languages
23. Poll: Which dynamic languages are you using in your enterprise development?
24. Drivers for Dynamic Languages Faster time to market Increase staff productivity Uptime of customer applications Development Compliance with commercial support Legal risk mitigation Distribution rights Business
Good morning, good afternoon and good evening depending on where you are in the world and welcome to today’s webcast “Safeguarding against the risks of improper open source licensing – valuable lessons for software and hardware vendors brought to you by Olliance Group and ActiveState. I am Liliya Apostolova, today’s announcer and here are just a few housekeeping items before we begin. This webcast will be interactive between you and our presenters. This program contains audio polling. The polling questions will appear in the slide presentation window. Please complete the polls when they appear and click on the submit answer button right there on the polling slide window after you finish. Thanks in advance for your participation. And speaking of participation, you can participate in the Q&A session. Just type a question into chat panel the webinar pane and click the submit button. We’ll try to answer as many of your questions during the Q&A.
Now onto the presentation “Safeguarding against the risks of improper open source licensing – valuable lessons for software and hardware vendors”. Discussing today’s topic will be Greg Olson, Senior Partner and manager IP Management Practice at Olliance Group, an open source consulting . Greg has over 29 years of software industry experience in engineering, marketing and business development. As a senior executive at Olliance Group he has led engagements for major companies such as Microsoft, Palm and Barclays Global Investors, for commercial software companies initiating open source strategies such as Infobright, Adaptive Planning and Solid Information Systems and for open source start-ups such as EnterpriseDB, JasperSoft and Lucid Imagination. Also speaking today, we have Bart Copeland, President and CEO of ActiveState. Bart brings twenty years of leadership, management, finance, and business experience to his position as CEO and President of ActiveState. Before he joined ActiveState, Bart led several high-tech organizations in the capacity of President &CEO, including Credo Interactive Inc, iMessaging Systems, Inc , Recombo, and PhotoChannel Networks Inc. Mr. Copeland has been instrumental in structuring these organizations in terms of company vision, strategic planning, corporate and legal affairs, marketing strategy, financing, business development and alliances, sales & distribution channels, and administrative operations. So Welcome to Greg and to Bart.
Our agenda today includes the following: Discussing the legal, operational and market risks associated with open source Common pitfalls with open source licensing Tips for creating an open source governance program Effective steps to protect your organization against costly infringements Highlighting some Commercial open source options to mitigate risks We’ll complete the webcast with our Q&A session. With that, I’d like to introduce you to our first presenter, Greg Olson. Hello Greg.
Our first poll question is: What are the biggest challenges you face around integrating open source packages? This is a multiple choice question so please select all answers that apply to you. a) Higher volume of code acquisition decisions b) Maintaining code and version consistency across the company c) Managing support for many open source elements d) Managing participation in public communities e) Ensure license compliance for elements at distribution time Once you have selected your answer, click on the submit button. I’d like to give everyone an opportunity to weigh in on this question so we’ll give them 10 more seconds. Let’s see what you selected as the biggest challenges you face around integrating open source packages. It seems most of you ( %) selected ….. Now, back to Greg’s presentation.
Second poll question on indemnification This is a single answer question so please select the answer that applies to you. What percentage of open source projects in your organization are currently indemnified? a) 0-25% b) 26-50% c) 51-75% d) 76-100% e) Don't know Once you have selected your answer, click on the submit button. I’d like to give everyone an opportunity to weigh in on this question What percentage of open source projects in your organization are currently indemnified? And the possible choices are a) 0-25% b) 26-50% c) 51-75% d) 76-100% e) Don't know Let’s see how many of your open source projects are currently indemnified. It seems most of you ( %) selected ….. Now, back to Greg’s presentation.
Policy What licenses are compatible with your company’s plans? What quality standards match your company’s uses? What level of support meet your company’s needs? Who makes the calls? Process Insure policy is applied reliably to all software incorporated Developed Contracted Licensed Acquired
Greg transitions There are many open source packages out there and open source dynamic languages are i) one such set of packages and ii) are pervasive in enterprise development. That’s why we’ll explore how ActiveState solves some the needs of software and hardware vendors who use dynamic languages to deliver their applications to market faster but want to mitigate open source legal and operational risks.
Dynamic languages are # 1 in open source adoption and an essential tool in developers’ toolkits. Easy to acquire, easy to learn Our final poll question for this program is: Which dynamic languages are you using in your enterprise development? This is a multiple choice question so please select all answers that apply to you. a) Perl b) Python c) Tcl d) PHP/Ruby/Javascript e) None Let’s which dynamic languages are the preferred for your enterprise development. It seems most of you ( %) selected ….. Thanks everyone for your active participation and now back to Bart for his next slide.
There are many drivers for the development team and business for why they select dynamic languages Dynamic languages enable faster delivery to market, doing more with the same staff and keeping applications up at maximum are key For the business, the drivers are around compliance with policies around open source dynamic languages, legal risks and ensuring distribution rights (According to Forrester, nearly four out of five developers use open source software for development or application deployment. That's much higher than the 40% of IT managers and executives who say their companies use open source software.) That means, developers may be brining in open source components without knowledge or approval of their managers which exposes the organization to risks)
One thing to keep in mind is that Open Source dynamic languages can be Time-consuming to compile, test, maintain Open source dynamic languages may originate from a download on the Internet ( say Perl.org), come pre-packaged with the their operating system or be commercial ready like ActivePerl. That’s why there could be lack Standardization & compatibility across all systems Or pose problems with Database connectivity How do you know which modules to use? Or how they are licensed? Plus Reliance on open source community = risk to business systems What about Privacy? ( no enterprise wants to expose private dev issues on the forums) What about Wasted time & resources? ( time spend with dynamic languages = less time on own application) What about Potential system downtime? ( how do you troubleshoot effectively and fast)
There is good news, when managed properly from a licensing and operational perspective dynamic languages can be fantastic for dealing with all the pressures and risks in businesses today: Enterprise-grade or commercial grade = stable, reliable Save development resources, time Focus developers on core competencies Leave building & maintenance to experts Rely on experts for best practices guidance Save money Get peace of mind with guaranteed stability, security, reliability Ensure uptime of systems Turn-key redistribution rights means less time spend on legal and understanding licenses and more time spend on development and business improvement
Use the ROI whitepaper table to explain
Many software and hardware vendors trust our solutions. For example: Ca uses ActivePerl OEM to: Save time, effort, development costs ($) Reduced cost of product expansion Faster QA cycles Mitigate legal risks Satisfy customer demands for indemnification
Thanks to both Bart and Greg. Now it’s time for our Q&A. Type your questions in the submit question button. We’ll try to get as many of these questions as possible. Our first question is from B Butler and he asks: - What are the pitfalls to releasing our code using LGPL? Greg, can you tackle this one? Our next question is from Chase Turner and Bart, I think this one is for you. Chase asks: How do I ensure third-party solutions I use are in compliance with their open source obligations? Our next question is from Steve Gremban and I think this one goes to Greg. Are there licensing pitfalls for using or embedding web API's such as Google map API? I think we have time to handle one more question here: This question is from Tomek Wardega and it reads: Could you please talk a little bit about legal requirements of using open source dynamic languages in the commercial products. I am about to start selling an application that uses open source libraries and need to know the legal aspects. Greg, can you tackle this one quickly? Thank you very much to both Greg and Bart. Thank you to our audience for your participation today. If your question was not answered during the Q&A, an ActiveState representative will get back to you with the answers shortly. Shortly after this presentation, you’d be able to access the webcast on demand by receiving our follow up email with the on-demand link. All attendees will also be receiving their complimentary whitepaper “ License to Code” in their follow up email from us. On behalf of myself and our guests Bart Copeland and Greg Olson, have a fantastic rest of the day.