EclipseSource Completes TÜV Certification for Secure Eclipse Plug-in Repository

Share Article

EclipseSource Introduces Industry’s First TÜV Certified Process for Validating and Securing Open Source Libraries

This removes one of the last great hurdles to open source adoption: ensuring that the open source components our customers use are authentic and free of security and licensing issues.

EclipseSource Inc, the leading provider of Eclipse runtime products and services today announced that it has received TÜV certification of its proprietary process for validating and securing open source components. This industry-first achievement offers unprecedented protection and reassurance for organizations using open source components in their tool chain as well as those building applications on top of Eclipse and OSGi runtime technologies.

Software components validated using EclipseSource’s certified methodology, combined with the company’s secure provisioning and component delivery platforms, form the cornerstone of EclipseSource’s SecureSource product suite. SecureSource, provided to client organizations as a subscription-based service, is designed to eliminate concerns about open source code authenticity and origin.

“We are pleased to be the first company to deliver a TÜV certified process for validating open source software,” said Jochen Krause, CEO, EclipseSource. “This removes one of the last great hurdles to open source adoption: ensuring that the open source components our customers use are authentic and free of security and licensing issues.”

The TÜV certification is based on the ISO/IEC 25051:2006 standard for software engineering and software product evaluation. The EclipseSource process ensures the pedigree of each component, scans it for security issues, captures license characterization and provides a secure mechanism for the delivery of the digitally signed components to the subscriber.

“Certification of our open source validation process by a leading standards organization like TÜV provides assurance to our customers that they are using rigorously validated open source components in their tool chain and runtimes,” said Jeff McAffer, EclipseSource’s CTO and co-lead of the Eclipse Equinox and RCP teams. “Ultimately, it means that organizations can make full use of open source without the significant overhead of having to validate these components themselves."

SecureSource is available immediately from EclipseSource as subscription-based service and includes secure versions of the latest Eclipse 3.5.1 download.

About TÜV SÜD Product Service
TÜV SÜD Product Service GmbH is a globally active organization testing, inspecting and certifying product safety, quality and usability. With approximately 1,700 employees, the organization offers expertise in all current product standards and market requirements.

TÜV SÜD is a leading international service organization catering to the strategic business segments INDUSTRY, MOBILITY and PEOPLE. Around 14,000 employees are represented at more than 600 locations throughout the world. Optimizing technology, systems and know-how, the interdisciplinary specialist teams act as process partners to strengthen their customers' competitiveness.

About EclipseSource Inc
EclipseSource brings together recognized experts from key Eclipse projects and delivers the ability to meet the demanding technical requirements of commercial adopters. EclipseSource provides a complete range of products and services from fundamental technology development, production and developer support, training and mentoring to commercial management and provisioning solutions.

With leadership roles in over ten key Eclipse projects, EclipseSource provides coverage for all essential Eclipse runtime technology under one roof. The organization has staff in North America and Europe and a truly global customer base ranging from Fortune 100 corporations to individual developers.


Share article on social media or email:

View article via:

Pdf Print

Contact Author

Peter O'Blenis
Visit website