Black Duck Hub is MassTLC’s Innovative Technology of the Year in Security
Company launches initiative to improve security of increasingly popular container technology
Burlington, MA – September 17, 2015 – Black Duck Software, a global leader in automated solutions for securing and managing open source software, last night received the Massachusetts Technology Leadership Council’s 2015 award for Innovative Technology of the Year in Security.
MassTLC’s recognition – for the company’s Black Duck Hub software – coincided with Black Duck’s launch yesterday of a major initiative focused on increasing the security of container technology for use in the enterprise. Concern about container security has been a barrier to widespread enterprise adoption.
Black Duck Hub, which was released this year, enables organizations to automate both the identification of all their open source code and the detection of any known security vulnerabilities.
Black Duck Executive Vice President and CTO Bill Ledingham said, “The Hub builds on all the great technology that we developed in our Black Duck Suite over the past 10 years. Innovations in open source scanning and the KnowledgeBase, combined with a revamped UI and an integrated set of features, deliver great value to our customers and serve as the new foundation for our product delivery going forward.”
Black Duck CEO Lou Shipley said, “Acknowledging the innovation and excellence of our product and engineering groups in delivering the Hub to market earlier this year is very rewarding. Importantly, the recognition is also a clear signal from our industry that innovation in open source software security matters.”
Shipley said continuous innovation in open source security is vital today. “Use of open source software is exploding worldwide and as we’ve seen, through recent high-profile breaches, there’s no shortage of people looking for ways to exploit that trend through hacks, which have proven to be very costly.”
Adoption of container technology is surging, particularly among small- and medium-sized businesses, because it is an attractive way for organizations to quickly and efficiently build and deploy the applications that fuel innovation and productivity. Shipley said industry-wide efforts need to be accelerated in order to ensure containers are secure for enterprise adoption.
Shipley said that in recent weeks Black Duck’s engineering team has done extensive security testing on scores of containers and “the results in terms of the known open source vulnerabilities we found show that enterprise wariness is justified,” he said. “We see a clear need for increased awareness of container security gaps and concerted efforts among security vendors to improve the current situation.”
To kick off the secure containers initiative Black Duck has created a new web site focused on that task – www.securecontainers.com.
“We’ll be populating the site with container security content of all kinds and we are reaching out to encourage others to contribute articles, charts, and blog posts.
“Open source security is just one aspect of container security and over time we envision the site being a clearing house for valuable information that will enable delivery of secure containers in the enterprise as quickly as possible.”
About Black Duck Software
Organizations worldwide use Black Duck Software’s industry-leading products to secure and manage open source software, eliminating the pain related to security vulnerabilities, compliance and operational risk. Black Duck is headquartered in Burlington, MA, and has offices in Mountain View, CA, London, Frankfurt, Hong Kong, Tokyo, Seoul and Beijing. For more information, visit www.blackducksoftware.com.
Katelyn Campbell, 617-502-4300
Black Duck Software
Brian Carter, 508-277-7570