Palamida Introduces Enterprise Edition 5.0

New AutoExpert™ Capability Increases Automation and Accuracy

- November 18, 2010 - Palamida, the leader in application security for open source today announced general availability of its Palamida Enterprise Edition version 5.0. Palamida Enterprise Edition 5.0 adds significant advances in automation and usability to the industries’ most comprehensive solution for Software Composition Analysis. With Enterprise Edition 5.0, Palamida customers are able to discover and track their use of open source and other third party software used within their development projects in order to reduce intellectual property and security risks. Because open source and other third party software often makes up fifty percent or more of software projects today, taking explicit action to discover, remediate and track software content has become an essential part of today’s software development process.

"Intellectual Property and security compliance has become essential in today’s world of mixed source development projects", said Mark Tolliver, Palamida CEO. "Our goal is to make it a fast, accurate process and to give development teams confidence that they are building great apps and at the same time responsibly managing their use of externally developed code. Enterprise Edition 5.0 leverages five years of customer feedback, and hundreds of audit projects by our own services team to deliver the next generation of solution."

New capabilities in Enterprise Edition 5.0 include:

• AutoExpert™ - a new capability which dramatically increases the level of automated detection and reporting of software content, saving time and improving accuracy.
• QuickReview™ - a lightweight business process to allow stakeholders from development, legal, security and operations to approve or reject audit findings, track remediation of open issues, and create release notes for software projects
• Content Visualization – makes Software Composition Analysis visual, adding a whole new dimension to analysis of copyrights, exact file matches, source code fingerprints and similar evidence within software projects. Using content visualization organizations can easily assess the completeness of analysis, as well as examine outlier evidence that would be difficult to spot with text reports
• Upgraded Analyst User Interface – over 10 major usability improvements make the user interface for analyzing scan results more efficient and productive. Improvements include color coding of evidence results, improved side-by-side code comparison capability, and shortcuts for creation of software categories (groups).
• Dynamic Workflow- Enterprise Edition 5.0 workflow has new capability to route requests dynamically, and new APIs to allow Enterprise Edition to operate within existing workflow environments.
• Frequent, On-line Vulnerability Updates – to keep development teams up to date on the latest vulnerabilities reported for the open source components in use in their projects

"In the age of Web 2.0, with its extreme collaboration and mashup-style reuse, composition analysis will lower the risk that software components that enterprises use in their applications are insecure, or outdated, or not properly licensed”, said Joseph Feiman, Vice President and Gartner Fellow at Gartner. “Enterprises should be requesting from vendors a proven accuracy of software composition analysis (SCA), a transparent SCA integration into a Software Life Cycle, and the enablement of a rapid and user-friendly remediation.”

About Palamida, Inc.

Palamida provides the industry’s first application security solution exclusively for open source software. The Palamida Enterprise Edition uses component-level analysis to quickly identify and track undisclosed code and associated security vulnerabilities, as well as intellectual property and compliance issues. Using Palamida, organizations can cost-effectively manage and secure mission critical Web and software applications.

For more information visit: www.palamida.com.