All Articles

"Software companies are undergoing a seismic shift in how they monetize and deploy products. Nearly two-thirds (59%) expect to deploy more software-as-a-service (SaaS) models; and 54% expect to increase subscription pricing models. Concurrently, perpetual licensing and on-premises deployments are growing much more slowly. Still, the increase in all deployment models reflects the hybrid nature of contemporary approaches."

Conal Gallagher, CIO of Flexera and Revenera, sheds light on how common security misconceptions—such as about a company’s place in the software supply chain—can complicate efforts to guard against vulnerabilities. He illustrates how a software bill of materials (SBOM) can provide an aggregate view of your IT estate to protect a company, its supply chain partners, and its customers.

Sharing his perspective on “the importance of a robust security strategy, and best practices to better protect … sensitive data from cyberthreats,” Alex Rybak, senior director of product management at Revenera, notes that “we've seen a marked uptick in interest in SBOM tools, especially those that unify all SBOMs into a single, actionable view. When the next high-profile vulnerability hits, suppliers that have this unified data at their fingertips will quickly uncover exposures wherever they exist across their portfolio of applications so they can expediently fix the problems—no matter if the code was developed internally or outside of the organization.”

"You wouldn’t serve food if you have reason to believe it will harm those consuming it. And you shouldn’t release software that isn’t secure. The best way to ensure safety is to maintain a current 'ingredient list' list of all components in your software—a software bill of materials (SBOM),” writes Senior Director of Product Management at Revenera, Alex Rybak.

"With the help of Revenera SBOM Insights, businesses can control their security and legal risk by keeping an up-to-date, accurate SBOM in the cloud. By combining the SBOM from various data sources and giving complete insight to security and legal teams as well as supply chain partners, this cloud inventory management solution increases the amount of transparency into enterprises’ products beyond the code that is under their control.”

David Zwick, chief financial officer at Flexera Software, evaluates software models and how they can be optimized to build recurring revenue for software vendors. He looks at the value of pairing SaaS and subscription and identifies practical steps for doing so.

Those who use your software found it, love it, and want to use it. Unfortunately, some people use your software without paying for it. Victor DeMarines, vice president of software monetization product management at Revenera, highlights how better data about software piracy, overuse, and misuse can help software suppliers shore up their revenue loss and strengthen their license compliance initiatives.

A software bill of materials (SBOM) itemizes the components of software, helping to ensure that the software is secure by design. Kendra Morton, principal, product marketing at Revenera, and Martin Callinan, founder and director of Source Code Control Limited, take a detailed look at why SBOMs are in the spotlight, what’s included in SBOMs, how they protect the software supply chain, the role of SBOMs in software composition analysis (SCA), and best practices for creating and maintaining an SBOM.

Marty Mellican, vice president and associate general counsel at Revenera, evaluates legal considerations for open source software management, providing a simple set of best practices to help manage and mitigate risks.

As reliance on open source software (OSS) grows, the risk plane expands. One of the greatest risks isn’t the code itself, but a lack of knowledge of what’s in the code. Alex Rybak, Senior Director of Product Management at Revenera, details five practical steps that can help ensure greater transparency and trust in your open source program.

Victor DeMarines, vice president of software monetization product management at Revenera, clears up confusion about the differences between two increasingly common and important concepts in software: SaaS (a deployment model) and subscription (a monetization model). Adopting these models—individually or in combination—requires clear understanding and analysis of their differences, the needs they meet, and the benefits they deliver for business initiatives and financial goals.

When the Log4j vulnerability was revealed in December 2021, IT teams and security experts scrambled for stability. Responses don’t need to be—and shouldn’t be—so frenzied the next time. Alex Rybak, Director of Product Management at Revenera, shares four processes to protect your code—and your time.

In this interview, Alex Rybak, Director of Product Management at Revenera, highlights findings from Revenera's 2022 Report on Software Supply Chain Compliance, evaluating issues related to the rapid growth of open source software usage and identifying how to safely tap into its strategic advantages.

Given that open source use is on the rise, along with the imposed operational risks and growing need for transparency and an SBOM, the adoption of Software Composition Analysis (SCA) tools is expected to steadily go up. SCA identifies open source components and provides warnings regarding license terms and security vulnerability exposures—helping organizations to shore up potential blind spots in their software supply chain.

A new report based on data from more than 100 open source audit projects conducted in 2021 finds that companies are only aware of 17 percent of the open source components they use, an increase of just four percent in the past year.

The software industry’s reliance on open source along with a sharp increase in open source software (OSS) dependencies helped to make supply chains a major security target. 64% of organizations were impacted by a software supply chain attack in the last year according to a recent report.

MSIX, Microsoft’s packaging format, is gaining acceptance and wider adoption because of its benefits for software installations: security, reliability and ease of use. Venkat Ram Donga, senior product manager at Revenera, provides best practices for using MSIX to streamline and strengthen the application installation experience.

"The software supply chain is increasingly under attack. No matter where your company stands in the software supply chain, you must take the necessary steps to ensure the safe use of the components. In this article, Alex Rybak, director of product management, Revenera, discusses a few questions you should ask yourself to evaluate and secure your organization’s use of open source."

Nicole Segerer, vice president of product management & marketing at Revenera, illustrates how software companies can ensure that strategy and tooling support current and future needs as they move toward SaaS applications.

Revenera’s Scott Niemann explains how to close the significant gap that often develops between continuous deployment of applications and accurate entitlement management—particularly as software producers shift to microservices that are delivered in containerized environments.