Most businesses today embed applications from third-party vendors because of convenience, flexibility, and cost savings. The problem with entrusting a third party is that you need to know that the code you rely on meets the same or better standards you demand for your own code as it relates to security, reliability and provenance.
I recently attended Mass TLC's 2014 Security Conference: Building Security into an Insecure World. One of the breakout sessions that really grabbed my attention was Securing Your Third Party Vendors. It discussed how your company and products may be secure; but what about those of third-party vendors and supply chain partners? The speakers for this session included Edna Conway, Chief Security Officer, Global Supply Chain at Cisco Systems; Joshua Brickman, Director, Security Evaluations, Oracle; Sally Long, Executive Director, The Open Group; and Adam Woodbury, Principal Engineer, MITRE. Thanks to all of the speakers for addressing this important topic.
Every software product today, relies on someone else's code at some level. At Iron Mountain, more than half of the escrow deposits we test today contain open source and all of them rely on third party code or tools. That makes everyone that is a software developer also a software user - and that creates risk which this group shared their experience with the audience.
According to a Forrester Research survey, four out of five developers use an open source development tool.
The panel talked about knowing where your third-party code comes from, whether its open source code or proprietary. They talked about application testing the code and ensuring that any known vulnerabilities are plugged and patched. In this day and age, there is lots of news almost daily about data breaches, just take a look at Home Depot & Target. It certainly makes sense, but what about the next level? You still need to think about the code itself and the need to be able to access it when something major happens. Ultimately, the product you sell has your logo and brand on it, your customers will hold you responsible to how it works or doesn't. So in today's world where every open source developer is also a licensee of software, reliant on third parties, shouldn't you be more prepared?
What if You Could:
Take the risk out of losing control when you embed third-party software?
Have leverage to ensure that your third-party vendor delivered on the promise of the software?
Have a mechanism to protect you even if your third-party developer closed its doors or stopped supporting your software?
Have peace of mind knowing that you're prepared for the unexpected?
Complement the use of your third-party vendor by utilizing the advantages of storing the entire code in an escrow account. Once you have it placed in the escrow account you can verify what is exactly in there and know for sure that if anything were to happen- you wouldn't suffer any repercussions.
Think of it this way You own a milk company, we'll call it Moo Moo, Inc., and you are 100% sure that the milk you are producing is clean, safe, and completely healthy. But then you place it in a third-party supplier's plastic milk jug to be shipped out to stores across the nation. You later find out that the jug has chemical toxins and they were released from the plastic into the milk and some of your consumers became really sick. Thousands of gallons of milk were recalled and you endured a cost, and blow to your reputation, factors that you were not prepared for. If you had outsourced, secured, and tested the plastic material first, then you would have been fine to continue normal business operations. However, by neither securing nor testing it, you ended up in a disruption to your business cycle since you had to wait for more plastic containers to be shipped to you and then verify that they were not chemically contaminated.
Although unfortunately we in the Technology Escrow business do not secure and verify your plastic milk bottles, we will help you manage your intellectual property and would be happy to have a discussion with you.
Thanks again to MassTLC for putting on such a thought-provoking conference!
Most recent headlines
06/10/2025
France T l visions, France's leading broadcaster, has received the 2025 EBU ...
04/09/2025
Monumental Sports & Entertainment (MSE), in collaboration with Dalet, has been a...
18/08/2025
ATLANTA Gray Media, Inc. has reached an agreement with the Fox Television Network that extends and renews the network affiliations for all of Gray's Fox aff...
18/08/2025
Berklee Announces Fall 2025 Signature Series This year's concerts feature Sasha Berliner, Samora Pinderhughes, and Rakim, alongside tributes to Bob Dylan,...
18/08/2025
Dorico Music Software: Tips for Switching from Finale Professor Lee Abe explains the music composition software and how it compares to the now-sunset Finale.
...
18/08/2025
When it comes to public access, education, and government (PEG) broadcasting, the needs of each community are unique-but the challenges often look the same. Whe...
17/08/2025
Mavis Camera, the fully-featured camera app for iPhone, now supports Atomos Ninja Phone, allowing content creators to connect professional cameras and lenses vi...
17/08/2025
TV Skyline, one of Germany's leading broadcast providers, supports a wide range of high-profile productions across Europe and beyond. From Bundesliga and Ch...
17/08/2025
Beamr Imaging Ltd. (NASDAQ: BMR), a leader in video optimization technology and solutions, will unveil its latest innovation Live 4K Super Resolution with vid...
17/08/2025
Amagi, a cloud-based SaaS technology solutions provider for broadcast and streaming TV, today announced its collaboration with DAZN, the world's leading spo...
17/08/2025
Grass Valley, the media and entertainment industry's leading technology innovator, today announced that Sky Network Television, New Zealand's largest pa...
17/08/2025
Cinegy, the premier provider of software-defined television technology, today announced a strategic partnership with ROCKET, a Toronto-based integrated solution...
17/08/2025
IABM will deliver its most comprehensive IBC program to date, with the new IABM Hub serving as the venue for an expanded range of activities designed to connect...
17/08/2025
Keepit, the only vendor-independent cloud dedicated to SaaS data protection, today announced it has successfully achieved its SOC 2 Type 1 attestation report. T...
17/08/2025
Combining scalability and robust disaster recovery while reducing its onsite footprint, NEP UK has streamlined its English Football League (EFL) coverage for Sk...
17/08/2025
Operative, a preferred advertising management solution for the world's leading media companies and Oracle partner, today announced that AOS, an intelligent ...
17/08/2025
MediaKind today announced that its elastic, cloud-native streaming platform, MK.IO, supported the seamless, high-quality streaming of the FIFA Club World Cup 20...
17/08/2025
Bitmovin, the leading provider of video streaming solutions, today announced the release of Bitmovin React Native SDK v1.0 for the Bitmovin Player. This major u...
17/08/2025
Mark Roberts Motion Control (MRMC), a Nikon Company, a global leader in robotic camera systems, today announces the release of the Cinebot Nano, a revolutionary...
16/08/2025
BALTIMORE Sinclair has announced that its free, over-the-air multicast networks Charge, Comet, Roar, and The Nest have concluded a series of national distributi...
16/08/2025
BOSTON EditShare will unveil its latest Ultimate EFS Nodes, optimized for high-performance media workflows at any scale, during IBC2025, Sept. 12-15, at the RAI...
16/08/2025
WASHINGTON PBS has informed public stations that it plans to cut its budget by about 21% as part of an effort to deal with the elimination of Federal funding an...
16/08/2025
ATLANTA Gray Media has named Bob Kroeger chief technology officer for the company, effective immediately. Bob has served as chief information officer for both G...
15/08/2025
On an otherwise ordinary Wednesday afternoon at one of New York City's most iconic museums, Spotify treated visitors to an extraordinary surprise. As patron...
15/08/2025
At 12:12 AM on August 12, Times Square lit up with something new: a bright-orang...
15/08/2025
Introduction Most engineers understand how to impedance match an antenna to 50 ohms. But what actually makes an antenna radiate? And why do some antennas radiat...
15/08/2025
Siretta was proud to support our new Japanese distribution partner, Midoriya Electric, at COMNEXT Japan.
Together, we showcased the SNYPER-5G, our advanced cel...
15/08/2025
Link ping, Sweden, September 9, 2024 - Agama, the specialist in video observability & analytics for service quality and customer experience, announced today th...
15/08/2025
Amsterdam, Netherlands, September 10th, 2024 - Agama, the specialist in video ob...
15/08/2025
Amsterdam, Netherlands, September 13, 2024 - Agama, the specialist in video observability & analytics for service quality and customer experience, today announc...
15/08/2025
Link ping, Sweden, October 08, 2024 - Agama, the specialist in video observability & analytics for service quality and customer experience, today announced that...
15/08/2025
Link ping, Sweden, April 24, 2025 - a specialist in video observability & analytics for service quality and customer experience, today announced that Hrvatski T...
15/08/2025
Link ping, Sweden, May 14, 2025 - Agama, a specialist in video observability & analytics for service quality and customer experience, today announced that Polis...
15/08/2025
Arlen Borrego Miranda Awarded 2025 Prodigy Scholarship by Latin Grammy Cultural ...
15/08/2025
WASHINGTON The pay TV and telco industry-backed American Television Alliance told staffers at the Federal Communications Commission's Media Bureau that the ...
15/08/2025
PHILADELPHIA and SUWANEE, Ga. Hisense and Xumo, the streaming joint venture between Comcast and Charter Communications, have announced the launch of Hisense Cha...
15/08/2025
SURREY, U.K. Mark Roberts Motion Control (MRMC) has launched the Cinebot Nano, a motion control robot designed to make professional-grade camera movement more a...
15/08/2025
15 Aug 2025
KYIV Ticker Goes Live on Nasdaq as Kyivstar Group Commences Trading Landmark listing makes Kyivstar the first and only publicly listed pure-play ...
15/08/2025
Upgrade and Save - Now Through August 31st!
Enjoy 20% or more off all Ivory 3 and Ivory II Upgrades for a limited time.
If you've been considering unlocki...
15/08/2025
Back to All News
Netflix Celebrates Mexican Cinema Day by Announcing the Produc...
15/08/2025
Of around 7,000 languages in the world, a tiny fraction are supported by AI lang...
14/08/2025
(L-R) Clay Pateneaude, Tabatha Zimiga, Porshia Zimiga, director Kate Beecroft, Leanna Shumpert, Jesse Thorson, and Jennifer Ehle attend the premiere of East o...
14/08/2025
Colombia siempre ha sido potencia en innovaci n musical! Desde la revoluci n del reggaet n en Medell n, pasando por las escenas indie y rockeras en Bogot , y el...
14/08/2025
Colombia has long been a powerhouse of musical innovation. From Medell n's reggaet n revolution to Bogot 's indie and rock scenes and Cali's salsa l...
14/08/2025
As the mercury rises and the days stretch long, Spotify has been turning up the vibrant sounds of South America, Central America, and the Caribbean with our Ver...
14/08/2025
Statement on the passing of David Stratton
14 August, 2025
Insights & articles
Statement by SBS Managing Director, James Taylor
SBS is deeply saddened by...
14/08/2025
The best project was the Olympic Games ever since I was young, I have been passionate about sport and to have the opportunity to be in the Stade de France for ...
14/08/2025
MONTREAL Grass Valley today announced that Sky Network Television, New Zealand's largest pay-TV provider, has chosen Grass Valley' AMPP to overhaul its ...
14/08/2025
MIAMI Telemundo today debuts Telemundo Deportes Ahora, a 24/7 Spanish-language sports FAST channel, on Peacock, Xumo Play, the NBC News FAST hub and Telemundo.c...
14/08/2025
DENVER, Colo. Sports entertainment platform DAZN relied on the MediaKind MK.IO elastic, cloud-native streaming platform to support high-quality streaming of the...
Most businesses today embed applications from third-party vendors because of convenience, flexibility, and cost savings. The problem with entrusting a third party is that you need to know that the code you rely on meets the same or better standards you demand for your own code as it relates to security, reliability and provenance.
