EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

07.31.08

Pulling an SCO Using Security Firms?

Posted in Free/Libre Software, FUD, Java, Microsoft, Security at 4:02 pm by Dr. Roy Schestowitz

The Fortify “Get the Facts” campaign (against Free software) was only mentioned very briefly here. It came in the form of a warning (it was also included in some link digests).

Security companies are funny creatures because they naturally love insecure software. They love breaking software apart and fear means business to them. Lying is never a problem, no matter the consequences. Moreover, Free software, which is inherently more secure, is a true danger to the business model of security agents, so they fight without tact or mercy [1, 2, 3].

Some concerned people, such as Sean at Internet News, truly wondered what Fortify had in mind. Why would it attack Free software so suddenly? Groklaw found this one, which is merely a possibility, not an explantion. It’s a vanity page bearing the headline: “FORTIFY-MICROSOFT ALLIANCE.”

Microsoft and Fortify Software are enabling software developers and testers to build and deliver more secure applications. Visual Studio 2005 Team Edition for Software Testers offers an easy-to-use yet powerful framework for testing. Fortify leverages this infrastructure and adds Web application security testing capabilities. The combination of the two effectively brings basic security testing out of the realm of specialized experts and into the hands of software testers. In addition, Fortify provides its award-winning source code analysis capabilities to Visual Studio Team Edition for Developers so security flaws discovered in development and testing can be diagnosed and fixed quickly. Working closely with the Visual Studio team has enabled Fortify Software to incorporate its innovative software security capabilities within the powerful Visual Studio

Groklaw adds: “Yes, folks. This partner of Microsoft is the same Fortify Software that put out that “study” that concluded that “Open Source” (but actually only Java) is risky.” It smells like a case of fitting data to an hypothesis and a sensationalist conclusion, and at the same time hitting two rivals of Microsoft: Java and Free software.

They didn’t assess proprietary equivalents. They wanted to encourage businesses to buy products from them. Furthermore, according to this, once/if you looked closely, you would find that proprietary products were shown to be more — not less — defective than Free software. So what has Fortify really proven?

Her main points:

1. There are other security toolkits other than Fortify. Just because you don’t use their system doesn’t mean you don’t care.
2. When reading vendor-sponsored studies consider the source. Always a wise move.
3. Open source projects in Fortify’s Open Review report fewer defects per thousand lines of code than proprietary products in the same review. I didn’t know that.

Fortify may also have some junk software patents, such as this one on “security testing”.

Fortify SCA helps security, testing and development teams pinpoint and eliminate security vulnerabilities in software applications. Fortify’s patent-pending technology delivers the most accurate and reliable results with low false positives..

“There should really be an index somewhere to tell who’s with who.”Watch who Fortify built an alliance with: Wipro, another Microsoft partner that’s joint to it by the hip and lobbies for OOXML — all against India’s interests [1, 2, 3, 4, 5].

Fortify lives in a not-so-healthy neighbourhood of proprietary software companies that combat Free software and encourage software patents.

The apple doesn’t fall so far from the tree.

With money on the table, there is no trust. Will you also believe OpenLogic and Black Duck, for example, despite being headed by former Microsoft employees? They sell open source fear. There should really be an index somewhere to tell who’s with who. It would help tremendously.

Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Reddit
  • co.mments
  • DZone
  • email
  • Google Bookmarks
  • LinkedIn
  • NewsVine
  • Print
  • Technorati
  • TwitThis
  • Facebook

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

A Single Comment

  1. aeshna23 said,

    July 31, 2008 at 6:06 pm

    Gravatar

    There is a right-wing website that would serve as a good model for a project of indexing who’s with who in the MS/proprietary software world:

    http://www.discoverthenetworks.org/

    (Pointing out this website as good model is neither an endorsement of the site nor is it to say that all information there is accurate. Most websites on the left and the right get carried away and honesty suffers.)

What Else is New

  1. The Patent Microcosm is Already Sucking up to Donald Trump in an Effort to Enrich Itself at Everyone's Expense

    Four new examples of patent maximalists embracing/adopting the pseudo-populist slogan to advance their goals of increasing litigation (which they profit from) and undermining PTAB (which made patents great in the quality sense)

  2. Patent Quality in the United States Can Only be Assessed at the Patent Trial and Appeal Board (PTAB) and the Courts

    The travesty of patent offices in the US and China, where the goal or the accomplishment is measured in terms of the number of patents rather than their quality

  3. Gradual Collapse of Microsoft's Extensive (and External) Patent Trolling Operations

    The President of Microsoft Technology Licensing LLC (patent troll) leaves and the founder of Intellectual Ventures, Microsoft's largest peripheral patent troll, joins Sherpa Technology

  4. No End to Battistelli's Witch-hunts Against the Media, Against Staff, and Against Politicians

    Rumours about the fate of people who are (or have been) criticising Battistelli's reign of terror at the EPO

  5. Links 10/1/2017: Synfig 1.2, Kodachi Linux 3.7

    Links for the day

  6. With Help From the US Supreme Court (Key Cases), Patent Trolls Are Going Away

    The demise of patent trolls in the United States, a trend partly attributable to Alice and other Supreme Court decisions, will likely accelerate soon (later this year) as the future of the Eastern District of Texas courts is at stake

  7. Patent Maximalism on Display: Patent Aggressor IBM Celebrated in the Media

    The patent lust at IBM, which is suing if not just shaking down companies using software patents, earns plenty of puff pieces from the corporate media

  8. FFPE-EPO, the EPO Management's Pet/Yellow Union, Helps Union-Busting (Against SUEPO) in Letter to Notorious Vice-President

    In a letter to Elodie Bergot (as CC) and Željko Topić, who faces many criminal investigations, FFPE-EPO ringleaders reveal their allegiance not to EPO staff but to those who perpetually attack the staff

  9. Links 9/1/2017: Civilization VI Coming to GNU/Linux, digiKam 5.4.0 Released

    Links for the day

  10. Links 9/1/2017: Dell’s Latest XPS 13, GPD Pocket With GNU/Linux

    Links for the day

  11. Update on Patent Trolls and Their Enablers: IAM, Fortress, Inventergy, Nokia, MOSAID/Conversant, Microsoft, Intellectual Ventures, Faraday Future, A*STAR, GPNE, AlphaCap Ventures, and TC Heartland

    A potpourri of reports about some of the world’s worst patent trolls and their highly damaging enablers/facilitators, including Microsoft which claims that it “loves Linux” whilst attacking it with patents by proxy

  12. Mark Summerfield: “US Supreme Court Decision in Alice Looks to Have Eliminated About 75% of New Business Method Patents.”

    Some of the patent microcosm, or those who profit from the bureaucracy associated with patents, responds to claims made by Techrights (that software patents are a dying breed in the US)

  13. Eight Wireless Patents Have Just Been Invalidated Under Section 101 (Alice), But Don't Expect the Patent Microcosm to Cover This News

    Firms that are profiting from patents (without actually producing or inventing anything) want us to obsess over and think about the rare and few cases (some very old) where judges deny Alice and honour patents on software

  14. 2017: Latest Year That the Unitary Patent (UPC) is Still Stuck in a Limbo

    The issues associated with the UPC, especially in light of ongoing negotiations of Britain's exit from the EU, remain too big a barrier to any implementation this year (and probably future years too)

  15. Links 7/1/2017: Linux 4.9.1, Wine 2.0 RC4

    Links for the day

  16. India Keeps Rejecting Software Patents in Spite of Pressure From Large Foreign Multinationals

    India's resilience in the face of incredible pressure to allow software patents is essential for the success of India's growing software industry and more effort is needed to thwart corporate colonisation through patents in India itself

  17. Links 6/1/2017: Irssi 1.0.0, KaOS 2017.01 Released

    Links for the day

  18. Watchtroll a Fake News Site in Lobbying Mode and Attack Mode Against Those Who Don't Agree (Even PTAB and Judges)

    A look at some of the latest spin and the latest shaming courtesy of the patent microcosm, which behaves so poorly that one has to wonder if its objective is to alienate everyone

  19. The Productivity Commission Warns Against Patent Maximalism, Which is Where China (SIPO) is Heading Along With EPO

    In defiance of common sense and everything that public officials or academics keep saying (European, Australian, American), China's SIPO and Europe's EPO want us to believe that when it comes to patents it's "the more, the merrier"

  20. Technical Failure of the European Patent Office (EPO) a Growing Cause for Concern

    The problem associated with Battistelli's strategy of increasing so-called 'production' by granting in haste everything on the shelf is quickly being grasped by patent professionals (outside EPO), not just patent examiners (inside EPO)

  21. Links 5/1/2017: Inkscape 0.92, GNU Sed 4.3

    Links for the day

  22. Links 4/1/2017: Cutelyst 1.2.0 and Lumina 1.2 Desktop Released

    Links for the day

  23. Financial Giants Will Attempt to Dominate or Control Bitcoin, Blockchain and Other Disruptive Free Software Using Software Patents

    Free/Open Source software in the currency and trading world promised to emancipate us from the yoke of banking conglomerates, but a gold rush for software patents threatens to jeopardise any meaningful change or progress

  24. New Article From Heise Explains Erosion of Patent Quality at the European Patent Office (EPO)

    To nobody's surprise, the past half a decade saw accelerating demise in quality of European Patents (EPs) and it is the fault of Battistelli's notorious policies

  25. Insensitivity at the EPO’s Management – Part V: Suspension of Salary and Unfair Trials

    One of the lesser-publicised cases of EPO witch-hunting, wherein a member of staff is denied a salary "without any notification"

  26. Links 3/1/2017: Microsoft Imposing TPM2 on Linux, ASUS Bringing Out Android Phones

    Links for the day

  27. Links 2/1/2017: Neptune 4.5.3 Release, Netrunner Desktop 17.01 Released

    Links for the day

  28. Teaser: Corruption Indictments Brought Against Vice-President of the European Patent Office (EPO)

    New trouble for Željko Topić in Strasbourg, making it yet another EPO Vice-President who is on shaky grounds and paving the way to managerial collapse/avalanche at the EPO

  29. 365 Days Later, German Justice Minister Heiko Maas Remains Silent and Thus Complicit in EPO Abuses on German Soil

    The utter lack of participation, involvement or even intervention by German authorities serve to confirm that the government of Germany is very much complicit in the EPO's abuses, by refusing to do anything to stop them

  30. Battistelli's Idea of 'Independent' 'External' 'Social' 'Study' is Something to BUY From Notorious Firm PwC

    The sham which is the so-called 'social' 'study' as explained by the Central Staff Committee last year, well before the results came out

CoPilotCo

RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

CoPilotCo

Recent Posts