All Articles


Know What Ingredients Are in Your Software: How SBOMs Protect Your Code

"You wouldn’t serve food if you have reason to believe it will harm those consuming it. And you shouldn’t release software that isn’t secure. The best way to ensure safety is to maintain a current 'ingredient list' list of all components in your software—a software bill of materials (SBOM),” writes Senior Director of Product Management at Revenera, Alex Rybak.


A New Software Composition Analysis Solution from Revenera

"With the help of Revenera SBOM Insights, businesses can control their security and legal risk by keeping an up-to-date, accurate SBOM in the cloud. By combining the SBOM from various data sources and giving complete insight to security and legal teams as well as supply chain partners, this cloud inventory management solution increases the amount of transparency into enterprises’ products beyond the code that is under their control.

VAR Insights

Optimize The Quote-To-Cash Process To Grow Your Software Business

David Zwick, chief financial officer at Flexera Software, evaluates software models and how they can be optimized to build recurring revenue for software vendors. He looks at the value of pairing SaaS and subscription and identifies practical steps for doing so.


How Data Can Prevent Software Piracy and Drive Licensing Revenue

Those who use your software found it, love it, and want to use it. Unfortunately, some people use your software without paying for it. Victor DeMarines, vice president of software monetization product management at Revenera, highlights how better data about software piracy, overuse, and misuse can help software suppliers shore up their revenue loss and strengthen their license compliance initiatives.


The What, Why, and How of SBOMs

A software bill of materials (SBOM) itemizes the components of software, helping to ensure that the software is secure by design. Kendra Morton, principal, product marketing at Revenera, and Martin Callinan, founder and director of Source Code Control Limited, take a detailed look at why SBOMs are in the spotlight, what’s included in SBOMs, how they protect the software supply chain, the role of SBOMs in software composition analysis (SCA), and best practices for creating and maintaining an SBOM.


How to Protect Your Company When Using Open Source Software

Marty Mellican, vice president and associate general counsel at Revenera, evaluates legal considerations for open source software management, providing a simple set of best practices to help manage and mitigate risks.


5 Steps for Proactively Managing Open Source Software

As reliance on open source software (OSS) grows, the risk plane expands. One of the greatest risks isn’t the code itself, but a lack of knowledge of what’s in the code. Alex Rybak, Senior Director of Product Management at Revenera, details five practical steps that can help ensure greater transparency and trust in your open source program.


SaaS and Subscription: Complements, Not Synonyms

Victor DeMarines, vice president of software monetization product management at Revenera, clears up confusion about the differences between two increasingly common and important concepts in software: SaaS (a deployment model) and subscription (a monetization model). Adopting these models—individually or in combination—requires clear understanding and analysis of their differences, the needs they meet, and the benefits they deliver for business initiatives and financial goals.


The Value of Quantitative and Qualitative Approaches to Collecting Software Usage Data

When used together, qualitative and quantitative approaches can provide precise, valuable insights to help optimize products—while also reducing the time and expenses related to gathering feedback. Michael Goff, principal, product marketing at Revenera, shows how software suppliers can gain the deepest possible insights into  users’ experiences by relying on these complementary methods.


How To Minimize Disruption When Security Vulnerabilities Are Revealed

When the Log4j vulnerability was revealed in December 2021, IT teams and security experts scrambled for stability. Responses don’t need to be—and shouldn’t be—so frenzied the next time. Alex Rybak, Director of Product Management at Revenera, shares four processes to protect your code—and your time.


How to Secure the Software Supply Chain

In this interview, Alex Rybak, Director of Product Management at Revenera, highlights findings from Revenera's 2022 Report on Software Supply Chain Compliance, evaluating issues related to the rapid growth of open source software usage and identifying how to safely tap into its strategic advantages.

Analytics Insights

Revenera's 2022 Report on Software Supply Chain Compliance: Demand for SBOMs Continue to Grow

Given that open source use is on the rise, along with the imposed operational risks and growing need for transparency and an SBOM, the adoption of Software Composition Analysis (SCA) tools is expected to steadily go up. SCA identifies open source components and provides warnings regarding license terms and security vulnerability exposures—helping organizations to shore up potential blind spots in their software supply chain.


Companies are only aware of 17 percent of their open source components

A new report based on data from more than 100 open source audit projects conducted in 2021 finds that companies are only aware of 17 percent of the open source components they use, an increase of just four percent in the past year.

SD Times

Report: 64% of companies were impacted by supply chain attacks mostly due to increased OSS reliance

The software industry’s reliance on open source along with a sharp increase in open source software (OSS) dependencies helped to make supply chains a major security target. 64% of organizations were impacted by a software supply chain attack in the last year according to a recent report.


Building a Reliable App Installation Experience with MSIX

MSIX, Microsoft’s packaging format, is gaining acceptance and wider adoption because of its benefits for software installations: security, reliability and ease of use. Venkat Ram Donga, senior product manager at Revenera, provides best practices for using MSIX to streamline and strengthen the application installation experience.

Ziff Davis Toolbox

4 Questions To Evaluate Your Organization’s Open Source Preparedness

"The software supply chain is increasingly under attack. No matter where your company stands in the software supply chain, you must take the necessary steps to ensure the safe use of the components. In this article, Alex Rybak, director of product management, Revenera, discusses a few questions you should ask yourself to evaluate and secure your organization’s use of open source."


How To Successfully Monetize SaaS Applications: Building A Software Monetization Approach With The Future In Mind

Nicole Segerer, vice president of product management & marketing at Revenera, illustrates how software companies can ensure that strategy and tooling support current and future needs as they move toward SaaS applications.


Cloud Native Software Delivery: Closing the Gap Between Continuous Deployment & Entitlement Management

Revenera’s Scott Niemann explains how to close the significant gap that often develops between continuous deployment of applications and accurate entitlement management—particularly as software producers shift to microservices that are delivered in containerized environments.


Revenera Research Shows 70 Percent of Software Suppliers Collect Usage Data, But Only 26 Percent Believe They Do it Well

"Revenera says that simply collecting data isn’t enough. Leading companies automate the process and access to the data to get the best possible results out of their usage insights."


Software companies plan on switching to subscription models in the next 18 months in hopes for a better revenue

"More than half of the companies in the software industry are planning on moving to subscription models in the next year or so."