Feeds

Making sense of Salesforce.com

Some software, some risk

Internet Security Threat Report 2014

The Salesforce.com marketing pitch at the recent Dreamforce Europe was wearying at times but it is not complete nonsense. Chief executive Marc Benioff spent the first hour of his keynote reiterating what he has said 1,000 times before about "no software".

The "no software" slogan is deceptive, since Salesforce.com is a software platform. Benioff deliberately conflates multiple issues, including zero software deployment, cloud availability, and outsourced hardware maintenance.

The core of the model is multi-tenancy. One entity (Salesforce.com) takes responsibility for your hardware and application server. Multiple entities (including you) get shared use of those resources, financed by a subscription.

Marc Benioff

Benioff: cloud conflation?

Originally this was a single CRM application. Now it is called a platform (known as Force.com) since you can build many types of application on that platform. Is this "software as a service", or just a web application? It is both, especially since Salesforce.com publishes a SOAP API and claims to be the largest users of SOAP in the world.

I asked Adam Gross, vice president of developer marketing, whether the platform can also support REST. The answer is not really; you can create your own REST API to some extent, but authentication must be done through SOAP.

Developers can customize Salesforce or write their own applications (which is really the same thing) either by simple configuration, or writing code in APEX, which is a language created especially by and for Salesforce. Under the covers, I understand that Salesforce runs on Java and Oracle, (an upgrade to Oracle 10g is due later this year) so your APEX code ends up as Java byte code and queries Oracle. This is hidden from the developer, though.

One of the interesting features of Force.com is that you can develop entirely online. You can also write APEX code in Eclipse. There is a sandbox facility for testing. Another idea is to create mashups, which use web services to combine Salesforce applications with other web applications (just as Salesforce itself does with Google documents).

CRM and ERP blues

The next version of the Salesforce.com platform, available shortly, includes Visualforce, a tag-based syntax for creating a custom web user interface. Visualforce uses a model-view-controller pattern.

The Salesforce.com model has several attractions. It has inherent advantages. For example, hosted applications make more efficient use of hardware than on-premise servers. Another advantage is that rolling out a Salesforce.com implementation is easier than introducing something like SAP.

There is no hardware aspect to worry about, and the application is usable out of the box. Some of the customers I spoke to talked about failed or arduous implementations of SAP or Siebel systems.

Internet Security Threat Report 2014

Next page: Money saver?

More from The Register

next story
Download alert: Nearly ALL top 100 Android, iOS paid apps hacked
Attack of the Clones? Yeah, but much, much scarier – report
NSA SOURCE CODE LEAK: Information slurp tools to appear online
Now you can run your own intelligence agency
Microsoft: Your Linux Docker containers are now OURS to command
New tool lets admins wrangle Linux apps from Windows
Microsoft adds video offering to Office 365. Oh NOES, you'll need Adobe Flash
Lovely presentations... but not on your Flash-hating mobe
You stupid BRICK! PCs running Avast AV can't handle Windows fixes
Fix issued, fingers pointed, forums in flames
HTML5 vs native: Harry Coder and the mudblood mobile app princes
Developers just want their ideas to generate money
prev story

Whitepapers

Driving business with continuous operational intelligence
Introducing an innovative approach offered by ExtraHop for producing continuous operational intelligence.
Why CIOs should rethink endpoint data protection in the age of mobility
Assessing trends in data protection, specifically with respect to mobile devices, BYOD, and remote employees.
A strategic approach to identity relationship management
ForgeRock commissioned Forrester to evaluate companies’ IAM practices and requirements when it comes to customer-facing scenarios versus employee-facing ones.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Protecting against web application threats using SSL
SSL encryption can protect server‐to‐server communications, client devices, cloud resources, and other endpoints in order to help prevent the risk of data loss and losing customer trust.