wayne jackson's presentation at rsa 2012
TRANSCRIPT
![Page 1: Wayne Jackson's Presentation at RSA 2012](https://reader036.vdocuments.mx/reader036/viewer/2022062418/55638444d8b42a20358b50ef/html5/thumbnails/1.jpg)
Wayne JacksonChief Executive Officer
From the authors of Maven, Nexus, m2eclipse and other leading technologies.
The Sorry State of Application Security
Used by 80,000 organizations worldwide
![Page 2: Wayne Jackson's Presentation at RSA 2012](https://reader036.vdocuments.mx/reader036/viewer/2022062418/55638444d8b42a20358b50ef/html5/thumbnails/2.jpg)
Sonatype
Central: Where Open Source Lives
![Page 3: Wayne Jackson's Presentation at RSA 2012](https://reader036.vdocuments.mx/reader036/viewer/2022062418/55638444d8b42a20358b50ef/html5/thumbnails/3.jpg)
14,334 Components Were Updated in 2011
WE CAN BELIEVE INWE DON’T KNOW ABOUT
Ecosystem Lacks Change Awareness
On Average, 400 Updates per Day
![Page 4: Wayne Jackson's Presentation at RSA 2012](https://reader036.vdocuments.mx/reader036/viewer/2022062418/55638444d8b42a20358b50ef/html5/thumbnails/4.jpg)
Component Dependencies are Complex
of modern software is open source.
The global 2000 average more than 1,000 unique components per month
80%
![Page 5: Wayne Jackson's Presentation at RSA 2012](https://reader036.vdocuments.mx/reader036/viewer/2022062418/55638444d8b42a20358b50ef/html5/thumbnails/5.jpg)
…the Fixes are NOT
1,447projects contain theflawed component
Issues are Viral…
![Page 6: Wayne Jackson's Presentation at RSA 2012](https://reader036.vdocuments.mx/reader036/viewer/2022062418/55638444d8b42a20358b50ef/html5/thumbnails/6.jpg)
• In the Last Year…
• 6,982 Organizations
• Crypto Library
• Level 10 Flaw
• 3 Years After Fix
Houston, We Have a Problem!
![Page 7: Wayne Jackson's Presentation at RSA 2012](https://reader036.vdocuments.mx/reader036/viewer/2022062418/55638444d8b42a20358b50ef/html5/thumbnails/7.jpg)
Usage Events
Event-Driven Knowledge Engine
The Central RepositoryPublic & Private Component
Metadata Resources
Update EventsConsumption Events Metadata EventsConsumption
CorrelationCreation
ComponentDetail
LicenseDetail
ProjectDetail
UpdateReason
FlawDetail
Knowledge
![Page 8: Wayne Jackson's Presentation at RSA 2012](https://reader036.vdocuments.mx/reader036/viewer/2022062418/55638444d8b42a20358b50ef/html5/thumbnails/8.jpg)
Sonatype Insight
Delivering Knowledge. In Context.
![Page 9: Wayne Jackson's Presentation at RSA 2012](https://reader036.vdocuments.mx/reader036/viewer/2022062418/55638444d8b42a20358b50ef/html5/thumbnails/9.jpg)
Started – Q3 2010
Insight Pre-Launch – Q4 2011
Insight Launch – RSA 2012
Sonatype: Transforming Software Integrity
Already, more than 300 customers
![Page 10: Wayne Jackson's Presentation at RSA 2012](https://reader036.vdocuments.mx/reader036/viewer/2022062418/55638444d8b42a20358b50ef/html5/thumbnails/10.jpg)
From the authors of Maven, Nexus, m2eclipse and other leading technologies.
Thank You!
Used by 80,000 organizations worldwide