Feeds

Black Duck and Palamida plug-in to Eclipse

Know your code

  • alert
  • submit to reddit

Internet Security Threat Report 2014

Software licensing specialists Palamida and Black Duck Software are bringing IP compliance to application development tools built using the open source Eclipse framework.

Palamida announced Tuesday plans for a plug-in to Eclipse for its IP Amplifier product, which consists of a compliance library and detector used to identify software licenses in companies' code.

The plug-in, expected during the next six months, was announced as Palamida also said it is joining Eclipse as an Add-In Provider, at the O'Reilly Open Source Convention (OSCON). Palamida joins Black Duck who on Monday used OSCON to deliver an Eclipse-based plug-in for its protexIP compliance suite.

Black Duck also announced a deal with SourceForge, the online home to 103,000 software development projects, to host a replicated version of the SourceForge service. Black Duck's protexIP will run against SourceForge to check for latest licensing and IP status of the myriad software packages. Palamida said it was an existing user of the SourceForge service.

Both companies plug-ins are designed to help detect and verify the type of licensing associated with code in the software customers are building, when working with Eclipse-based application lifecycle management (ALM) tools.

The companies hope to help developers by reducing the delays associated with threading through code to identify software licenses while also helping save employers from costly legal actions over potential IP violations at a later stage.

By working with Eclipse, Black Duck and Palamida are reaching out to a growing and potentially powerful class of ISVs who are building ALM tools on Eclipse.

Eclipse began life building a common, open integrated development environment (IDE) framework consisting of an interface, code debugger and repository that third parties could easily snap into without special engineering. The group has since moved further up the application lifecycle chain with the Test and Performance Tools Platform (TPTP) and the Business Intelligence and Reporting Tools (BIRT) projects.

Those backing Eclipse include IBM Rational, using Eclipse as the basis for its ALM tools, along with ISVs who have produced nearly 1,000 plug-ins to enhance functionality across the ALM chain.

Mark Tolliver, Palamida's chief executive, said it is important to provide application developers using Eclipse with tools that can help them identify and police IP from early on in the application's lifecycle. "Getting the entire development chain instrumented for proper and easy IP management is one of the next steps from an infrastructure point," Tolliver told The Register.

While a great deal has been written about IP concerns in relation to open source software, Black Duck and Palamida are keen to highlight an area that can also apply to "closed source" software development. That concern centers around the use of Eclipse-based ALM tooling by IT teams who use and re-use third parties' software - not necessarily open source - in the field of component-based development.

Palle Pederson, Black Duck's chief technology officer (CTO), said his company's plug-in would help solve potential licensing problems in projects using component based development techniques.

"The move toward component-based development and the exploding use of open source software have made it increasingly difficult for developers to attest to the origins and obligations associated with their mixed-IP software projects. We hope to make the developer's life easier by managing this complexity," Pederson said in a statement.®

Related stories

Eclipse updates platform and projects
The Eclipse conundrum
Palamida lands a Cisco
Ex-Sun VP guns for IP violations
Open source search engine trawls free code
Open source ahoy!

Security for virtualized datacentres

More from The Register

next story
Microsoft WINDOWS 10: Seven ATE Nine. Or Eight did really
Windows NEIN skipped, tech preview due out on Wednesday
Business is back, baby! Hasta la VISTA, Win 8... Oh, yeah, Windows 9
Forget touchscreen millennials, Microsoft goes for mouse crowd
Apple: SO sorry for the iOS 8.0.1 UPDATE BUNGLE HORROR
Apple kills 'upgrade'. Hey, Microsoft. You sure you want to be like these guys?
ARM gives Internet of Things a piece of its mind – the Cortex-M7
32-bit core packs some DSP for VIP IoT CPU LOL
Microsoft on the Threshold of a new name for Windows next week
Rebranded OS reportedly set to be flung open by Redmond
Lotus Notes inventor Ozzie invents app to talk to people on your phone
Imagine that. Startup floats with voice collab app for Win iPhone
'Google is NOT the gatekeeper to the web, as some claim'
Plus: 'Pretty sure iOS 8.0.2 will just turn the iPhone into a fax machine'
prev story

Whitepapers

Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Storage capacity and performance optimization at Mizuno USA
Mizuno USA turn to Tegile storage technology to solve both their SAN and backup issues.
The next step in data security
With recent increased privacy concerns and computers becoming more powerful, the chance of hackers being able to crack smaller-sized RSA keys increases.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.
A strategic approach to identity relationship management
ForgeRock commissioned Forrester to evaluate companies’ IAM practices and requirements when it comes to customer-facing scenarios versus employee-facing ones.