Product : Black Duck Software

Overview

Over the past decade, a powerful new approach to development – open source software – has risen to prominence, dramatically increasing the opportunity to re-use existing software. As with commercialcomponents, the ownership of externally developed open source components and fragments remainswith their authors. While most of these authors allow the commercial use of their software withoutinitial payments or royalties, many have chosen to impose other constraints, such as: attribution, usage reporting, license replication and the requirement that the resulting (derivative) software must be open source.

Across industries, the availability of robust open source and third-party software code is accelerating application delivery and lowering costs. It's likely that your organization is knowingly or worse, unknowingly using free and open-source software (FOSS) in internal and customer-facing software. The challenge is creating the right balance between management controls and enabling your development teams to leverage the ever-increasing abundance of high quality, secure, free and open source code. Black Duck solutions non-disruptively augment your existing development and procurement processes so you can more fully leverage existing code—without introducing hidden security, legal, and business risks

About Black Duck Software

Black Duck Software is the global leader, innovator and pioneer in providing strategy, products, and services for enabling enterprise scale adoption of open source software (OSS), by automating the management, governance and secure use of free and open source software, at enterprise scale, in a multi-source development process. Black Duck enables companies to shorten time-to solution and reduce development costs while mitigating the management, compliance and security challenges associated with free and open source software.

Founded in 2002, Black Duck has approximately 80 percent market share, a fast-growing customer base including some of the largest companies in the world and approximately 40 percent annualized sales growth for the past three years. Black Duck Software powers Koders.com, the industry's leading code search engine for open source, Ohloh.net, the largest community for and free public directory of open source, and The Olliance Group, the leading open source business and strategy consulting firm.

Solution Offering

Black Duck KnowledgeBase - The foundation of the Black Duck Suite of solution offering is the Black Duck KnowledgeBase. Each of the Black Duck platform is a modular component that fits into the KnowledgeBase, to meet individual needs and requirements.

The Black Duck KnowledgeBase is a result of Black Duck continuously searching code repositories and project sites for open source and other downloadable code. The result is the industry's most comprehensive database of open source software and associated license and other information, the Black Duck KnowledgeBase.

The Black Duck KnowledgeBase includes over 640,000 projects from more than 5,100 sites and is updated with thousands of new projects on a regular basis. In addition, the KnowledgeBase contains detailed data for over 2,050 unique software licenses (GPL, LGPL, Apache, etc.) including not only the full license text, but dozens of encoded attributes and obligations for each license, enabling fast and accurate analysis and automated license compatibility notifications.

Black Duck publishes source code from our KnowledgeBase on the free website Koders.com. The tens of thousands of open source developers who access Koders.com daily submit hundreds of new projects and hosting sites annually for Black Duck to spider. This community relationship provides us with a unique way to expand the breadth and depth of the Black Duck KnowledgeBase to levels of coverage that far exceed alternative solutions
.
Black Duck Suite -The Black Duck® Suite enables enterprise open source adoption, with automated management, governance, compliance and security risks associated with open source and realize the compelling economics of open source with unprecedented visibility and control. The Black Duck Suite automates key processes related to open source code management over the application development life cycle: Search & Select, Review & Approve, Catalog, Validate, Maintain & Monitor.

The Suite provides a catalog of software components with searchable metadata (component information), and when a component is proposed for use, the Suite automates the approval process. Additional capabilities include providing code search straight from the software developer's IDE. And on the back end of the application development lifecycle, code is validated before it is deployed.

The foundation of the Black Duck Suite is the BlackDuck KnowledgeBase. Billions of lines of valuable open source software are available on the Internet for developers, but only the Black Duck Suite leverages the industry's most comprehensive database of open source software, the Black Duck KnowledgeBase.

Black Duck Code Center- Black Duck® Code Center™ boosts developer productivity by streamlining the search, selection, approval and tracking of open source and other externally produced software components, even across geographically dispersed development organizations.

Black Duck Code Center supports an enterprise-wide framework for corporate decision makers to collaborate seamlessly in managing software development policies and simultaneously allows organizations to efficiently leverage the abundance of open source and third-party code.

With Black Duck Code Center, component-based software development is faster and more cost-effective, workflow is optimized, and security and policy integrity are standardized enterprise-wide. Productivity gains accelerate over time as Black Duck Code Center enables companies to create and internally publish a catalog of approved open source code, encouraging standardization, capturing critical expertise and efficiently supporting open source approval criteria.

Black Duck Code Sight - is a source code search engine that brings transparency and easy access to an enterprise's vast and often distributed internal source code resources. Code Sight indexes code across an organization's source code repositories to enable developers with fast search, easy access and visibility into what are often untapped code resources. It improves developer productivity and software quality, supports standardization, and enhances compliance.

Black Duck Protex - The Black Duck® Protex™ compliance management platform helps companies ensure compliance with their policies and legal obligations. The platform was the first to be brought to the market, and today remains the clear market leader with implementations among a far larger and more diverse customer base than any other product on the market. Protex is a multi-user software application that enables enterprises to manage their use of open source software and intellectual property throughout the development lifecycle – in planning projects, reviewing code, seeking component and legal approvals, understanding license obligations and creating reports.

Black Duck Protex SDK - provides programmatic access to Protex features and services extending the capabilities of the Black Duck Protex platform. This enables the enterprise or software development team to tightly integrate Protex into their development processes. Developers can build custom applications, tools and services including custom dashboards.

Black Duck Export - Black Duck™ Export is the world's first and only solution specifically for encryption export compliance management for software and software-based assets that identifies cryptographic elements in source code and automates the regulatory approval process helping organizations to comply with Bureau of Industry and Security (BIS) regulations. This provides a competitive advantage by smoothing the encryption export process and speeding approvals. The Black Duck Export platform helps companies reduce confusion, save time and eliminate encryption export violations.

Value Proposition