DHS: Warns on Cyber Risks of Open Source. The Department of Homeland Security has suggested striking significant passages from a draft White House policy on open software out of concern that baring too much source code will increase the government’s vulnerability to hacking. Read the rest
ENTERPRISE APPS: Open Source Code is Common, Potentially Dangerous, in Enterprise Apps. The Open Source Vulnerability Database shut down this week posed yet another security challenge for developers who routinely inject massive amounts of free off-the-shelf code into new software. As the name suggests, OSVD was a resource where non-commercial developers could look – free – for patches to known vulnerabilities. Without it, other vulnerability repositories remain, but its closure points up one of the problems with how open source code is used, particularly in enterprise development: often once it’s incorporated into apps, it might never be updated to fix vulnerabilities that are discovered later. Read more
NEW BROWSER: The Young Vivaldi Browser is Taking Its Cues from the Community. Vivaldi is a new browser, powered by libraries from more than 100 different open source projects, and growing in popularity. Here’s an interview with Ruarí Ødegaard, a QA engineer for Vivaldi, the company behind the browser, which was created by the former CEO and co-founder of Opera, Jon von Tetzchner. Read more
GOOGLE: Google Open Source Hybrid Cloud Gets New OpenStack Backup Driver. The Cinder driver, which allows Google Cloud Platform to be used as a backup target by OpenStack, is an important addition to the company’s hybrid cloud. Read more
NOW ON SLIDESHARE: Tech Update Summary from Blue Mountain Data Systems March 2016 http://www.slideshare.net/BMDS3416/tech-update-summary-from-blue-mountain-data-systems-march-2016.
IT SECURITY SUPPORT: Blue Mountain Data Systems is actively involved in implementing FISMA and NIST standards with Federal Civilian Agencies. Due to our extensive experience in this area, Blue Mountain has developed processes and organizational techniques to help ensure security deliverables are completed on time, and performed in the most efficient manner possible. We ensure that NIST-800-53 control requirements are treated consistently during definition, analysis, implementation, auditing, and reporting phases of a system. Find out more about Blue Mountain Data Systems IT Security Support Services. Call us at 703-502-3416.
BLUE MOUNTAIN DATA SYSTEMS HAS THE EXPERIENCE: 1994 to Present – U.S. Dept. of Labor, Employee Benefits Security Administration. Responsible to the Office of Technology and Information Systems for information systems architecture, planning, applications development, networking, administration and IT security, supporting the enforcement of Title I of the Employee Retirement Income Security Act — ERISA. Within the EBSA, Blue Mountain is responsible for design, development and support for its various enforcement database management systems, as well as all case tracking and customer service inquiry systems. Blue Mountain also provides IT security services to the EBSA, in the form of FISMA Assessment and Authorization, System Security Plans, Risk and vulnerability assessments, monitoring and investigation support. Read more.