Here we go again. Another terrifying breach of data, of trust, and more concretely, of a mission-critical application that manages sensitive data. Attorneys general, Congress, the FBI, the Associated Press, the intergalactic cyber task force, and everyone else are now investigating what went wrong at Equifax. Almost certainly, the board of every company that deals with sensitive data held their emergency meeting last week to get a sense of their own security posture and issue an urgent action plan to find and remediate any security gaps that may bear a resemblance to this exploit.Many boards these days have a member who is a cyber expert. Most cyber experts are former CISOs, and most CISOs are former network security specialists. That’s because investment in network and perimeter security has outstripped application security by a factor of 23:1 taken cumulatively from the inception of the cybersecurity profession. Boards and many CISOs don’t understand software design, … [Read more...] about From equanimity to Equifax
Open source projects, companies and business models have been with us for more than two decades now. There are business success stories around Linux, Hadoop, PostgreSQL, Apache Camel, and others that deliver fully open source products.While the build environments and parameters may or may not be available to build the same certified binaries, the source code is available for users to pick up and use on their own if they so choose.Enterprise IT may go on their own either for initial deployments if total-cost-of-ownership analysis is not favorable for the product subscription or to migrate to in the case if dissatisfied with vendor quality and/or service. This is the so-called “.org challenge” to open source companies to deliver enough ongoing value to counter the self-support urge of customers and potential customers.[ Discover 2017’s best open source software for enterprise: The Bossie Award winners. | Track the latest trends in open source with InfoWorld’s Open … [Read more...] about Open core products: Are they worth the trade-off?
A long-requested and long-unfulfilled feature for .Net has finally been delivered by Microsoft and the Mono team: A linker that allows .Net applications to be stripped down to include only the parts of libraries that are actually used by the program at runtime.The IL Linker project works by analyzing a .Net application and determining which libraries are never called by the application in question. “It is effectively an application-specific dead code analysis,” says Microsoft in its GitHub announcement for the project.[ Microsoft .Net Core 2.0: Everything you need to know. | Why .Net Core is finally ready for prime time. | .Net Framework or .Net Core? Learn when to use which. | Keep up with hot topics in programming with InfoWorld’s App Dev Report newsletter. ]A long-term mission for IL Linker is to make it into “the primary linker for the .Net ecosystem.”The current, preview version of IL Linker only supports a small subset of possible .Net … [Read more...] about Microsoft linker tool shrinks .Net applications
If you want to know how to do open source the smart way, pay attention to LinkedIn. It has delivered some of the industry’s most impressive open source software, most recently its Cruise Control load-balancing tool for Apache Kafka, a distributed streaming platform also developed by LinkedIn that is used to build real-time data pipelines and streaming apps in big data applications.Cruise Control exemplifies the serious open source savvy on LinkedIn’s part, with its extensibility and generality.[ Intel, Apache, Amazon, and more: See the 2017 open source rookies of the year. | Track the latest trends in open source with InfoWorld’s Open Source Report newsletter. ]Although meant for general consumption, Cruise Control didn’t have a real community around it; it had been developed by and for LinkedIn. But LinkedIn built Cruise Control in a way that would translate beyond LinkedIn’s needs. Many such projects make the rookie mistake of solving only their … [Read more...] about How to do open source right
For a decade, there’s a question that just won’t go away: Is the cloud killing open source? It still strikes up some emotions.Open source software has been the backbone of enterprise platforms for a long time—remember the LAMP stack of Linux, Apache, MySQL, and PHP/Perl? But consuming open source software via the cloud could change open source’s enterprise footprint.[ Are you ready for the container invasion? Learn how to get started with Kubernetes. | Keep up with the latest developments in cloud computing with InfoWorld's Cloud Computing newsletter. ]‘Free’ open source is not cheaperFirst of all, open source’s no-cost attribute means less in the cloud. Public cloud providers will charge you for the time you use their cloud to access open source software—or any software.Thus, it doesn’t really matter if you AWS Linux, Red Hat Linux, or closed-source platforms from Microsoft, because they are all “free” yet cost the same … [Read more...] about The cloud could drive open source out of the enterprise
Open clouds build upon all three of the open software models – open standards, open source, and open core – described in our last blog, "What does 'open' mean to IT in the cloud era?" Beyond the benefits of open software, one can garner some or all of the benefits of cloud computing. Those benefits include economies of scale, fast time to deployment, consume-what-you-need pricing models, reduced physical plant costs, and the ability to focus more resources on core business differentiation for customers rather than building and supporting commodity IT infrastructure.Public cloud computing magnifies the benefits of the subscription model of open source software (OSS) to include hardware. It also offers speedy startup and tear-down, a consume-what-you-use model that is particularly beneficial to widely variable workloads over time, and savings on real estate, electricity and staff dedicated to managing and maintaining infrastructure. It seems a bit oxymoronic that a public … [Read more...] about Open clouds – Let freedom ring!
Azure is rapidly turning into a container-driven public cloud, with strategic investments in tools and hires. It’s also running fast, launching new container-focused products and services on a regular basis. At first, Azure was catching up with Amazon Web Services’ features, but the release of the new Azure rapid-deployment container service that acts as a bridge between platform as a service and infrastructure as a service leapfrogs Amazon.Introducing container as a servicePerhaps best thought of as a new class of cloud platform — call it “container as a service”— Azure Container Instances (ACI) let you rapidly create and launch containerized applications, without any overhead and with an easily scriptable set of commands. Designed to work both on its own and with tools like Kubernetes, ACI adds container-management commands to Azure, coupling them with a billing model that’s based on per-second usage, with no need to create and deploy (and … [Read more...] about What is ACI? Microsoft’s Azure Container Instances explained
The official Go blog has provided the first concrete details about the next version of Google’s Go language, which is used to create popular applications like Docker and Kubernetes, as well as to incrementally replace critical internet infrastructure.But Go developers waiting for immediate word about generics, or other pet features they’ve long been waiting to see added to the language, are going to walk away disappointed.[ Also on InfoWorld: Tap the power of Google’s Go language. | The best Go language IDEs and editors. | Keep up with hot topics in programming with InfoWorld’s App Dev Report newsletter. ]The post, written by Go architect Russ Cox, details how the chief goal for Go 2 is “to fix the most significant ways Go fails to scale.” By “scale,” Cox is referring to both production and development. The former is about “concurrent systems interacting with many other servers, exemplified today by cloud software,” and the … [Read more...] about Sorry, Go 2 probably won’t add your ‘missing’ feature
The official Golang blog has provided the first concrete details about the next version of Google’s Go language, which is used to create popular applications like Docker and Kubernetes, as well as to incrementally replace critical internet infrastructure.But Golang devs waiting for immediate word about generics, or other pet features they’ve long been waiting to see added to the language, are going to walk away disappointed.[ Also on InfoWorld: Tap the power of Google’s Go language. | The best Go language IDEs and editors. | Keep up with hot topics in programming with InfoWorld’s App Dev Report newsletter. ]The post, written by Golang architect Russ Cox, details how the chief goal for Golang 2 is “to fix the most significant ways Go fails to scale.” By “scale,” Cox is referring to both production and development. The former is about “concurrent systems interacting with many other servers, exemplified today by cloud software,” … [Read more...] about Sorry, Golang 2 probably won’t add your ‘missing’ feature
From the launch of the Free Software Movement in 1983, to the growing popularity of Java today, open source software is fast becoming a serious threat to proprietary software everywhere. By its very essence, open source fuels enterprising organizations, because unlike cookie-cutter solutions available from proprietary systems, it enables greater innovation and differentiation, helping companies stand apart and encouraging healthy competition at a lower cost.Low cost and differentiationIt’s no wonder that many of today’s business and government organizations rely on open source software, such as Linux, as a low-cost alternative that can be customized to suit particular needs pretty quickly. In fact, it’s estimated that more than half of software acquired over the next several years will be open source. And we’re not only talking about operating systems and productivity tools, but also about smart software application tools like machine learning.So why are costs … [Read more...] about Is open source good for business?
If the open source model is broken, as Apcera founder Derek Collison believes, then container orchestration wunderkind Kubernetes may be its first major casualty. Yes, that Kubernetes, the Google-spawned container king that 71 percent of enterprises surveyed by 451 Research say they’re using for container management.It seem far-fetched that Kubernetes could be heading for a fall, even as it continues to rise. But the problem, Collison argues, is one of investment: The old open source model was all about commoditizing a richly funded market filled with proprietary software. Open source came along, democratized the market, and shifted investment dollars elsewhere.[ Discover what’s new in Kubernetes 1.7. | To the cloud! Real-world container migrations. | Dig into the the red-hot open source framework in InfoWorld's beginner's guide to Docker. ]Kubernetes (and a host of other new-school open source projects) turns this model on its head, however. It started life as open … [Read more...] about Kubernetes’s days may be numbered as open source changes
Premier Farnell, a distributor of Raspberry Pi, has created a kit that turns Raspberry Pi into a full-fledged desktop PC, running Linux.What value does the Pi Desktop box bring to Raspberry Pi? Can’t you just use the Pi and use it as a desktop? Not really. First of all, there are no start, reboot or reset buttons on the device. Which means you can’t turn the PC off via a button.“The built-in power switch makes the Pi Desktop easy to operate. An intelligent and safe power controller means that users do not have to remove the power adapter from the Pi board; they simply turn the power on or off like a desktop or laptop,” said Premier Farnell in a press release.[ Give yourself a technology career advantage with InfoWorld's Deep Dive technology reports and Computerworld's career trends reports. GET A 15% DISCOUNT through Jan. 15, 2017: Use code 8TIISZ4Z. ]The second problem is that Pi uses a MicroSD card for the operating system and storage, which limits the usage. … [Read more...] about How to build a Raspberry Pi-based desktop PC
Red Hat and Amazon have long been framed as rivals, but only in the sense that anyone who provides on-prem Linux and PaaS products competes to some degree with a cloud provider. Really, they're more like peanut butter and jelly. Yesterday, Red Hat unveiled details about a new partnership with Amazon to support integrating some widely used AWS options into Red Hat's OpenShift PaaS. The list of services covers basic infrastructure (AWS Route 53, AWS Cloudfront), data (AWS Redshift/Aurora/Athena), and cutting-edge technologies (AWS Lambda). [ To the cloud! Real-world container migrations. | Dig into the the red-hot open source framework in InfoWorld's beginner's guide to Docker. ]Here are three reasons why offering those services with OpenShift is big for Red Hat and its customers-and how it could potentially be big for other cloud vendors too. 1. It goes where you go This deal isn't only about supporting these services if you're running an OpenShift instance on AWS. These … [Read more...] about 3 takeaways from Red Hats AWS deal for OpenShift
Google has added support for up to six users to its virtual assistant device, Google Home. That's a huge leap in the world of machine learning and artificial intelligence. It solves many problems related to voice-activated virtual assistants, while also creating some serious privacy concerns. I have three Gmail users in my house who all access the same Google Home device, which is linked to my account. It's used for playing music, watching videos through Nvidia Shield, helping with recipes, asking questions, checking appointments, and other such tasks. Here's the problem: I hate it. My Google search history and YouTube playlists are all messed up. It's full of queries by my wife, guests, kids, and our au pair. My private appointments are accessible to anyone who can ask for them. Anyone can activate my Google Home device by yelling from outside the window and taking control of connected devices like oven, lights, and door lock (I was smart enough to not install smart locks). Worst of … [Read more...] about Google Home can now recognize voices. What does that mean for privacy?
Linux kernel 4.11 has been released Linus Torvalds has been busy working on the latest version of the Linux kernel, and now it's finally here. Linux kernel 4.11 has been released, and it offers a range of fixes and new features. You can get a full list of what's new in Linux 4.11 from the Kernel Newbies site. Simon Sharwood reports for The Register: So what do we get this time around? Among other things, Linux is now better at hot-swapping solid state disks and can now do journaling on RAID 4/5/6 volumes. While we're talking storage, there's also support for the OPAL self-encrypting disk drive standard. The kernel has also gained support for the Shared Memory Communications over RDMA (SMC-R) (SMC-R) spec, an IBM invention that allows virtual machines to share memory and therefore speeds up communications between the machines, helps with load balancing and doesn't hurt when clustering Linux boxen. Enterprise users and gamers will both be happy that the kernel adds improved support for … [Read more...] about Linux kernel 4.11 released
Sometimes all you need is a single function. That’s the idea behind serverless computing, where individual functions spin up on demand, perform a minimal piece of work (serve as an API endpoint, return static content, and so on), and shut down. It’s cheap, it uses minimal resources, and it has little management overhead.Most of what we currently identify as serverless computing kicked off with AWS Lambda, later joined by similar services on Microsoft Azure, Google Cloud Platform, and IBM Bluemix. But there’s a healthy complement of open source serverless architectures available—not only facilitators for the serverless frameworks on a particular cloud, but full-blown methods to deploy serverless frameworks on the cloud or hardware of your choosing.[ A developer’s guide: Get started with serverless computing. | Microsoft Azure Functions locks in on serverless computing. | Build ’em now! 5 uses for serverless frameworks. ]Here are five of the most … [Read more...] about Get functional! 5 open source frameworks for serverless computing
IBM has unveiled its WebSphere Application Server Version 5, an e-business infrastructure that builds on the integration capabilities of previous releases. This latest version is the natural next step in the evolution of application servers, said Stefan Van Overtveldt, director for WebSphere technical marketing. "If you look at the past 25 years, application servers were first basically used to put a Web front end on existing applications," he told CRM Buyer Magazine. Today, "application servers are acting more and more as integration conduits for such activities as Web services and portal technology. This is really what WebSphere application Version 5 is all about." Scheduled for Delivery To be sure, users now expect seamless integration of application servers and associated products. "The customer shouldn't have to know that the company has five different divisions and three manufacturing plants -- just that their order is on schedule for delivery on Friday," Giga Information Group … [Read more...] about WebSphere Application Server Version 5
SugarCRM, a provider of commercial open source CRM software, is expanding its reach to Europe -- an essential step for any small, high growth software company more than a few years old. Europe's Importance "The establishment of Sugar Europe signifies the importance of Europe as a key driver in the success of our commercial open source model," Oram stated. "Our strong partner base throughout Europe, the advanced multilingual capabilities of our application, and the embrace of open source by European governments and businesses has pulled us quickly into the European markets," he added. Besides establishing a local presence in Europe, SugarCRM is also localizing support materials for the French and German markets, expanding its on-demand infrastructure there and launching a campaign to raise awareness of the platform in Europe. Growth Opportunities Pushing into Europe is a smart move for the company, Rebecca Wettemann, vice president of Nucleus Research, told CRM Buyer. "There's … [Read more...] about SugarCRM Expands European Reach With Dublin Office
A range of factors will drive down software licensing costs in coming years, benefiting enterprises but creating a challenge for leading application vendors to keep profits rising, according to a new report. Information technology departments will seek ways to reduce what they spend on software, duplicating efforts to cut down on hardware and services budgets, research firm Gartner predicts. As they do, they will find a range of options for helping to cut expenses, including open source and Software as a Service (SaaS) alternatives. "Up until now, the unique nature of the software market has meant that buyers had very little negotiating power after the initial purchase of a software license," Gartner Vice President William Snyder says in the report. "We expect those dynamics to change considerably over the next five to 10 years." The trend is being driven by a host of factors that, when taken together, add up to a potentially seismic shift in the software landscape -- one that could … [Read more...] about Report: Software Licensing Fees Trending Lower