
Most businesses today embed applications from third-party vendors because of convenience, flexibility, and cost savings. The problem with entrusting a third party is that you need to know that the code you rely on meets the same or better standards you demand for your own code as it relates to security, reliability and provenance.
I recently attended Mass TLC's 2014 Security Conference: Building Security into an Insecure World. One of the breakout sessions that really grabbed my attention was Securing Your Third Party Vendors. It discussed how your company and products may be secure; but what about those of third-party vendors and supply chain partners? The speakers for this session included Edna Conway, Chief Security Officer, Global Supply Chain at Cisco Systems; Joshua Brickman, Director, Security Evaluations, Oracle; Sally Long, Executive Director, The Open Group; and Adam Woodbury, Principal Engineer, MITRE. Thanks to all of the speakers for addressing this important topic.
Every software product today, relies on someone else's code at some level. At Iron Mountain, more than half of the escrow deposits we test today contain open source and all of them rely on third party code or tools. That makes everyone that is a software developer also a software user - and that creates risk which this group shared their experience with the audience.
According to a Forrester Research survey, four out of five developers use an open source development tool.
The panel talked about knowing where your third-party code comes from, whether its open source code or proprietary. They talked about application testing the code and ensuring that any known vulnerabilities are plugged and patched. In this day and age, there is lots of news almost daily about data breaches, just take a look at Home Depot & Target. It certainly makes sense, but what about the next level? You still need to think about the code itself and the need to be able to access it when something major happens. Ultimately, the product you sell has your logo and brand on it, your customers will hold you responsible to how it works or doesn't. So in today's world where every open source developer is also a licensee of software, reliant on third parties, shouldn't you be more prepared?
What if You Could:
Take the risk out of losing control when you embed third-party software?
Have leverage to ensure that your third-party vendor delivered on the promise of the software?
Have a mechanism to protect you even if your third-party developer closed its doors or stopped supporting your software?
Have peace of mind knowing that you're prepared for the unexpected?
Complement the use of your third-party vendor by utilizing the advantages of storing the entire code in an escrow account. Once you have it placed in the escrow account you can verify what is exactly in there and know for sure that if anything were to happen- you wouldn't suffer any repercussions.
Think of it this way You own a milk company, we'll call it Moo Moo, Inc., and you are 100% sure that the milk you are producing is clean, safe, and completely healthy. But then you place it in a third-party supplier's plastic milk jug to be shipped out to stores across the nation. You later find out that the jug has chemical toxins and they were released from the plastic into the milk and some of your consumers became really sick. Thousands of gallons of milk were recalled and you endured a cost, and blow to your reputation, factors that you were not prepared for. If you had outsourced, secured, and tested the plastic material first, then you would have been fine to continue normal business operations. However, by neither securing nor testing it, you ended up in a disruption to your business cycle since you had to wait for more plastic containers to be shipped to you and then verify that they were not chemically contaminated.
Although unfortunately we in the Technology Escrow business do not secure and verify your plastic milk bottles, we will help you manage your intellectual property and would be happy to have a discussion with you.
Thanks again to MassTLC for putting on such a thought-provoking conference!
Most recent headlines
05/01/2027
Worlds first 802.15.4ab-UWB chip verified by Calterah and Rohde & Schwarz to be ...
07/10/2026
Dalet, a leading technology and service provider for media-rich organizations, today announced the latest Long-Term Supported (LTS) release of Dalet Flex. Build...
06/09/2026
June 9 2026, 23:00 (PDT) Dolby and MagentaTV Bring Fans Closer to the FIFA Worl...
04/08/2026
Dalet, a leading technology and service provider for media-rich organizations, t...
15/07/2026
Share
Copy link
Facebook
X
Linkedin
Bluesky
Email...
15/07/2026
Share
Copy link
Facebook
X
Linkedin
Bluesky
Email...
14/07/2026
South end zone videoboard, cloud-based control system will be ready for 2026 football season...
14/07/2026
Redesigned website, enhanced mobile app unify content, ticketing, and personalized fan engagement...
14/07/2026
Agreement spans sponsorship sales, digital monetization, radio production, and new practice facility naming rights...
14/07/2026
Independent league adds 14 regional sports network affiliates, growing distribut...
14/07/2026
New strategy aims to unify competitions, content, fan engagement, and commercial...
14/07/2026
ESPN and Disney+ become exclusive home of PFL events in key international MMA market...
14/07/2026
Gill will oversee engineering, technology, and sports operations across the company's 64 local television stations...
14/07/2026
Submitted by North American Broadcasters Association (NABA)
As broadcasters con...
14/07/2026
Modernized mobile unit combines HOME Apps, mc 56 console, and IP infrastructure ...
14/07/2026
Every match of the 32-team tournament will air across ION and Scripps Sports platforms in English and Spanish...
14/07/2026
FloHockey to stream every game of the annual international tournament under four...
14/07/2026
Victory+ telecasts to be simulcast on TEGNA-owned station, expanding free local distribution...
14/07/2026
Plug-ins for heavy music
Avalanche Tones is the brainchild of Ava Toton, a 17-year-old musician and developer who says her goal is to make the lives of gui...
14/07/2026
Launched alongside new Singer Showcase purchase model
IK Multimedia's innovative vocal-synthesis software has just gained its latest voice add-on, the R...
14/07/2026
Registration open until 1 September 2026
The MIDI Association have revealed that the registration deadline for this year's MIDI Innovation Awards has no...
14/07/2026
88-note model completes MK4 range
Novation have just introduced the final model in their flagship MIDI controller keyboard range, the Launchkey MK4 88. Roun...
14/07/2026
Share
Copy link
Facebook
X
Linkedin
Bluesky
Email...
14/07/2026
Share
Copy link
Facebook
X
Linkedin
Bluesky
Email...
14/07/2026
Share
Copy link
Facebook
X
Linkedin
Bluesky
Email...
14/07/2026
IBC2026 has unveiled a powerful Conference programme bringing together global media leaders, technology innovators, creators, sports organisations, broadcasters...
14/07/2026
Share
Copy link
Facebook
X
Linkedin
Bluesky
Email...
14/07/2026
Broadcast Solutions, a leading systems integrator and provider of innovative solutions for the broadcast media industry, has delivered two highly capable outsid...
14/07/2026
Share
Copy link
Facebook
X
Linkedin
Bluesky
Email...
14/07/2026
Share
Copy link
Facebook
X
Linkedin
Bluesky
Email...
14/07/2026
Share
Copy link
Facebook
X
Linkedin
Bluesky
Email...
14/07/2026
Share
Copy link
Facebook
X
Linkedin
Bluesky
Email...
14/07/2026
Editor's note: This post is part of the Nemotron Labs blog series, which exp...
14/07/2026
Techtel Successfully Relocates AICD Broadcast Studio to New Sydney Headquarters
BroadcastBroadcast EquipmentLive StreamingBroadcast Studio2026
14 July Writ...
14/07/2026
Tuesday 14 July 2026
First look revealed for Friday the 13th prequel, Crystal ...
14/07/2026
When immersive audio dominates industry headlines, it's easy to assume that every broadcaster is preparing for an Atmos future. The reality is quite differ...
14/07/2026
Emma and Sophie from ICG's marketing team joined thousands of fellow marketers, brands and agencies at MAD//Fest London 2026, one of the UK's biggest ma...
14/07/2026
Why Trusted and Secure Media Operations Matter In this series, we explore the technologies, architectures and operational realities shaping modern media operati...
14/07/2026
Pilot Project Shows How Retailers Are Prepared for the Next Step in the Evolution of Digital Commerce
Arvato Systems Drives Agentic Commerce Forward
G terslo...
14/07/2026
As part of this commitment, weve joined the SME Climate Hub, publicly pledging to:
measure our greenhouse gas emissions
reduce them in line with a net zero p...
14/07/2026
Power is AI infrastructure's inescapable constraint. How many tokens an AI factory can generate within a fixed power budget determines its revenue and profi...
13/07/2026
The Braves opted to keep production in-house rather than hand it off to MLB...
13/07/2026
Behind The Mic provides a roundup of recent news regarding on-air talent, including new deals, departures, and assignments compiled from press releases and repo...
13/07/2026
Eurovision Sport is making live athletics more accessible to fans than ever befo...
13/07/2026
The Milwaukee Bucks will return to full-season over-the-air television for the 2...
13/07/2026
SMPTE has announced an expanded education pathway for media technology professio...
13/07/2026
Vizrt has announced that its graphics technology was used by broadcast design agency Girraphic for Netflix's debut MVP MMA event, broadcast live from the In...
13/07/2026
ARRI has announced an agreement to sell its global rental activities in Europe, the United Kingdom, and North America to H2 Equity Partners through a management...
13/07/2026
DAZN has announced a partnership with Premier Boxing Champions (PBC) to bring PBC fight nights to DAZN subscribers globally. The partnership begins Saturday, Ju...
13/07/2026
TikTok and WSC Sports have announced a strategic partnership that gives sports r...