Resources

How much attention do you pay to product usage data? The benefits and best practices are common knowledge by now – we all likely know the potential wealth of information contained within software usage analytics – but how much time do you commit to reviewing and learning from the insights at your fingertips? When hit with never-ending questions about feature development, roadmaps, and bug fixes, it’s easy to skip the routine of stepping back and studying customer behavior data.

Read the third and final report in our Monetization Monitor series for the latest trends in software piracy, overuse, and misuse. Discover how data-driven insights can help prevent future losses.

IDC has published a new report on how software suppliers can overcome the challenges of entitlement management, detailing how a single source of truth can empower flexibility, growth, and customer retention.

On September 14th, The White House published a memorandum addressing the state of the global software supply chain.

Frost & Sullivan analysts have published a new study into the changing landscape of software license enforcement, and how solution providers are helping software producers adapt to increased demand for SaaS deployments and intelligent devices. The software enforcement market is forecast to more than double over the next six years, as software suppliers transition from homegrown licensing to specialist third-party integrations that can improve entitlement management and monetization strategies. The following have been identified as key drivers in the rise of software license enforcement: H

Read Revenera’s research report on trends in how software producers collect and analyze software usage data. 

Over the last few years, containers have become popular for software distribution and deployment, representing the innovation that software deployment desperately needed in a space where runtime environments are so fragmented. However, like any other disruption, this comes with its own challenges regarding software provenance – who added what to a container at what stage.

In this podcast Revenera experts break down the details of the two high severity OpenSSL vulnerabilities. Understand your next steps and what you should be doing to identify and remediate these issues.

If you’re responsible for developing a product monetization strategy, Revenera’s Monetization Monitor should be essential reading. The annual report based on our survey of global software suppliers is packed full of insights into how they are evolving business models, pricing plans, and deployment options to meet customer expectations and stay competitive in today’s market. The first report in the 2022 series focuses on Monetization Models and Strategies, and results indicate the trend toward SaaS offerings and subscription-based licensing continues to grow as publishers transition with hybrid

The OpenSSL project announced on October 25, 2022 that it was releasing OpenSSL version 3.0.7 which will patch newly discovered vulnerabilities in current versions of OpenSSL. Patches were released today.   OpenSSL is the core open source library that implements SSL and TLS protocols which makes it possible to securely communicate over the internet. Does all of this sound familiar? Remember “Heartbleed (CVE-2014-0160)?” Multiple attacks in 2014 exploited the ”Heartbleed” software flaw in OpenSSL, allowing attackers to spy on Internet communications, steal data, and impersonate services.

Adoption of Software Bills of Material (SBoMs) is critical to securing the software supply chain and improving cybersecurity throughout the open source ecosystem. Watch this webinar to learn how to use SBoMs to effectively manage all your open source, third-party and commercial software, regardless of its origin in all software deployment models including on-prem and SaaS

While there are currently thousands of institutions around the globe that train people in software development, only a fraction of those focus directly on code security. Surprisingly, even though there is an 80:1 ratio between software developers and security specialists, many still believe that the responsibility to find and eradicate vulnerabilities is only on security experts.