1010Computers | Computer Repair & IT Support

Ex-YC partner Daniel Gross rethinks the accelerator

Amid skyrocketing operating expenses, remote work has become an obsession for Bay Area founders looking to have it both ways, accessing Silicon Valley’s networks of capital and opportunity without paying steep premiums for talent.

Daniel Gross has a deeper understanding than most of Silicon Valley’s opportunities. The Jerusalem native was one of Y Combinator’s early successes, joining with an AI startup that, at 23, he sold to Apple (we reported the deal was between $40-60 million). Gross served as a director of machine learning at Apple before returning to YC — this time as a partner.

At age 28, his role at YC behind him, Gross is now working to revamp the startup accelerator model for a remote future with his startup Pioneer. He’s received backing from Marc Andreessen and Stripe to build a program he hopes can give founders access to funding streams and talent networks that are nearly impossible to find outside Silicon Valley.

“In the way software is eating the world, remote is almost eating earth in the sense that it may very well be the way large companies are created, but also perhaps the way that venture funding takes place,” Gross told TechCrunch in an interview. “With Pioneer, the product experiment we’re running is an attempt to build a San Francisco or Mountain View — to build a city on the internet.”

GettyImages 604311102

Marc Andreessen, one of Pioneer’s early investors.

That lofty goal has required quite a bit of tinkering on Gross’s part over the past 18 months since he launched the startup. During that time, he’s shifted the program’s structure from a Reddit-like online contest to win cash grants to what he calls a “fully remote startup generator” that can help remote founders create companies that later apply to Y Combinator or raise money from Pioneer.

“People were really taking advantage of Pioneer as kind of an online accelerator almost organically,” Gross says. “We decided to kind of operationalize that inside and focus more on funding people that are working on things that will turn into companies and potentially offer them more funding.”

Pioneer has already backed more than 100 founders, who have created solutions like remote team product There, desktop app generator ToDesktop and software search engine Metacode.

Pioneer is hoping their efforts can provide opportunities to founders in underserved geographies and regions, but like other investors in Silicon Valley, the startup hasn’t been backing nearly as many female founders as their male counterparts. From funded entrepreneurs publicly announced on Pioneer’s blog, less than 15 percent are women.

“Pioneer is an engine for finding, funding and mentoring underrated people, many of whom I suspect are female. Our minds are constantly spinning on ways to raise awareness amongst female founders and we’re working with our community to improve female representation,” Gross wrote in an email response. “The world could stand to have many more founders like Mathilde Collin (of Front) and Laura Behrens Wu (of Shippo), and we are eager to find them.”

One of Pioneer’s livestream discussions during its remote program.

Pioneer’s existence is partially the result of an advent of remote work and communication tools, but another real enabler is the competitive market for early stage investing. Mega VC funds are competing over pre-seed deals for the buzziest startups and Y Combinator’s batch sizes are ballooning, leaving little room for accelerators with similar pitches. As the world of early stage startup investing gets more crowded, investors are having to get creative. For Gross and his investors, Pioneer also represents an opportunity to scout deal flow earlier in the pipeline.

Gross has a weighty portfolio of his own angel investments including GitHub, Figma, Uber, Gusto, Notion, Opendoor, Cruise Automation and Coinbase.

An earlier structure gave Pioneer the right to invest up to $100K in startups emerging from the program if they went onto raise, but just 30% of grant awardees went on to found companies, Gross tells me. In its 2.0 form, Pioneer wants participants to give up 1% of their company to join the one-month remote program. The accelerator won’t give them cash but will help founders incorporate their startups, give them guidance via a network of experts, and toss some other substantial perks like $100K worth of cloud credits and a roundtrip ticket to San Francisco to inject a bit of face-to-face time into the process.

Greatly enjoyed the first Pioneer (@pioneerdotapp) Summit! pic.twitter.com/fIvdA24Kdf

— Patrick Collison (@patrickc) October 26, 2019

The biggest evolution is the more formalized investment structure for founders exiting the program. If Pioneer is excited about the progress of a particular startup, they may give it the option to raise directly from Pioneer upon completion, sticking it in one of three investment buckets and investing between $20K and $1 million.

Gross acknowledges that Pioneer will largely be making bets closer to the $20K mark as the accelerator scales its portfolio. Pioneer is relying an undisclosed amount of early funding from Gross, Andreessen and Stripe for both its investments and operating expenses. Gross says that the company has additional funding sources lined up to facilitate some of these larger investments, but that he’s reticent to raise too much too early. “This being my second rodeo, I’m well aware of the downsides of over-capitalizing and so I think we’re going to remain nimble and frugal,” Gross says.

Gross isn’t looking to replace Y Combinator, and realizes that for founders with plenty of options, Pioneer’s investments might not be the most enticing. Y Combinator invest $150K in startups for a 7% slice of equity, by comparison, a $20K investment from Pioneer will cost founders 5% of their company plus the 1% they gave up to join the accelerator in the first place. Nevertheless, Gross hopes that plenty of founders sitting on great ideas will want to take advantage of this deal.

“I think there are a lot of great companies that instead of being listed on the S&P 500 are stuck at the phase where they’re just a Python script.”

Powered by WPeMatico

Thomas Kurian on his first year as Google Cloud CEO

“Yes.”

That was Google Cloud CEO Thomas Kurian’s simple answer when I asked if he thought he’d achieved what he set out to do in his first year.

A year ago, he took the helm of Google’s cloud operations — which includes G Suite — and set about giving the organization a sharpened focus by expanding on a strategy his predecessor Diane Greene first set during her tenure.

It’s no secret that Kurian, with his background at Oracle, immediately put the entire Google Cloud operation on a course to focus on enterprise customers, with an emphasis on a number of key verticals.

So it’s no surprise, then, that the first highlight Kurian cited is that Google Cloud expanded its feature lineup with important capabilities that were previously missing. “When we look at what we’ve done this last year, first is maturing our products,” he said. “We’ve opened up many markets for our products because we’ve matured the core capabilities in the product. We’ve added things like compliance requirements. We’ve added support for many enterprise things like SAP and VMware and Oracle and a number of enterprise solutions.” Thanks to this, he stressed, analyst firms like Gartner and Forrester now rank Google Cloud “neck-and-neck with the other two players that everybody compares us to.”

If Google Cloud’s previous record made anything clear, though, it’s that technical know-how and great features aren’t enough. One of the first actions Kurian took was to expand the company’s sales team to resemble an organization that looked a bit more like that of a traditional enterprise company. “We were able to specialize our sales teams by industry — added talent into the sales organization and scaled up the sales force very, very significantly — and I think you’re starting to see those results. Not only did we increase the number of people, but our productivity improved as well as the sales organization, so all of that was good.”

He also cited Google’s partner business as a reason for its overall growth. Partner influence revenue increased by about 200% in 2019, and its partners brought in 13 times more new customers in 2019 when compared to the previous year.

Powered by WPeMatico

Expanding its women’s health benefits offerings for employers, Maven raises $45 million

Over the past 12 months, Maven, the benefits provider focused on women’s health and family planning, has expanded its customer base to include more than 100 companies, and grown its telehealth services to include 1,700 providers across 20 specialties — for services like shipping breast milk, finding a doula and egg freezing, fertility treatments, surrogacy and adoption.

The New York-based company, which offers its healthcare services to individuals, health plans and employers, has now raised an additional $45 million to expand its offerings even further.

Its new money comes from a clutch of celebrity investors, like Mindy Kaling, Natalie Portman and Reese Witherspoon, and institutional investors led by Icon Ventures and return backers Sequoia Capital, Oak HC/FT, Spring Mountain Capital, Female Founders Fund and Harmony Partners. Anne Wojcicki, the founder of 23andMe, is also an investor in the company.

Maven is addressing critical gaps in care by offering the largest digital health network of women’s and family health providers,” said Tom Mawhinney, lead investor from Icon Ventures, who will join the Maven board of directors, in a statement. “With its virtual care and services, Maven is changing how global employers support working families by focusing on improving maternal outcomes, reducing medical costs, retaining more women in the workplace, and ultimately supporting every pathway to parenthood.”

In the six years since founder Katherine Ryder first launched Maven, the company has raised more than $77 million for its service and she became a mother of two boys.

“You go through this enormous life experience; it’s hugely transformative to have a child,” she told TechCrunch after announcing the company’s $27 million Series B round, led by Sequoia. “You do it when your career is moving up — they call it the rush hour of life — and with no one supporting you on the other end, it’s easy to say ‘screw it, I’m going home to my family’ … If someone leaves the workforce, that’s fine, it’s their choice, but they shouldn’t feel forced to because they don’t have support.”

Some of Maven’s partners include Snap and Bumble to provide employees access to its women’s and family health provider network. The company connects users with OB-GYNs, pediatricians, therapists, career coaches and other services around family planning.

Powered by WPeMatico

Google launches the first developer preview of Android 11

With the days of desert-themed releases officially behind it, Google today announced the first developer preview of Android 11, which is now available as system images for Google’s own Pixel devices, starting with the Pixel 2.

As of now, there is no way to install the updates over the air. That’s usually something the company makes available at a later stage. These first releases aren’t meant for regular users anyway. Instead, they are a way for developers to test their applications and get a head start on making use of the latest features in the operating system.

With Android 11 we’re keeping our focus on helping users take advantage of the latest innovations, while continuing to keep privacy and security a top priority,” writes Google VP of Engineering Dave Burke. “We’ve added multiple new features to help users manage access to sensitive data and files, and we’ve hardened critical areas of the platform to keep the OS resilient and secure. For developers, Android 11 has a ton of new capabilities for your apps, like enhancements for foldables and 5G, call-screening APIs, new media and camera capabilities, machine learning, and more.”

Unlike some of Google’s previous early previews, this first version of Android 11 does actually bring quite a few new features to the table. As Burke noted, there are some obligatory 5G features like a new bandwidth estimate API, for example, as well as a new API that checks whether a connection is unmetered so apps can play higher-resolution video, for example.

With Android 11, Google is also expanding its Project Mainline lineup of updatable modules from 10 to 22. With this, Google is able to update critical parts of the operating system without having to rely on the device manufacturers to release a full OS update. Users simply install these updates through the Google Play infrastructure.

Users will be happy to see that Android 11 will feature native support for waterfall screens that cover a device’s edges, using a new API that helps developers manage interactions near those edges.

Also new are some features that developers can use to handle conversational experiences, including a dedicated conversation section in the notification shade, as well as a new chat bubbles API and the ability to insert images into replies you want to send from the notifications pane.

Unsurprisingly, Google is adding a number of new privacy and security features to Android 11, too. These include one-time permissions for sensitive types of data, as well as updates to how the OS handles data on external storage, which it first previewed last year.

As for security, Google is expanding its support for biometrics and adding different levels of granularity (strong, weak and device credential), in addition to the usual hardening of the platform you would expect from a new release.

There are plenty of other smaller updates as well, including some that are specifically meant to make running machine learning applications easier, but Google specifically highlights the fact that Android 11 will also bring a couple of new features to the OS that will help IT manage corporate devices with enhanced work profiles.

This first developer preview of Android 11 is launching about a month earlier than previous releases, so Google is giving itself a bit more time to get the OS ready for a wider launch. Currently, the release schedule calls for monthly developer preview releases until April, followed by three betas and a final release in Q3 2020.

Powered by WPeMatico

Google Cloud opens its Seoul region

Google Cloud today announced that its new Seoul region, its first in Korea, is now open for business. The region, which it first talked about last April, will feature three availability zones and support for virtually all of Google Cloud’s standard service, ranging from Compute Engine to BigQuery, Bigtable and Cloud Spanner.

With this, Google Cloud now has a presence in 16 countries and offers 21 regions with a total of 64 zones. The Seoul region (with the memorable name of asia-northeast3) will complement Google’s other regions in the area, including two in Japan, as well as regions in Hong Kong and Taiwan, but the obvious focus here is on serving Korean companies with low-latency access to its cloud services.

“As South Korea’s largest gaming company, we’re partnering with Google Cloud for game development, infrastructure management, and to infuse our operations with business intelligence,” said Chang-Whan Sul, the CTO of Netmarble. “Google Cloud’s region in Seoul reinforces its commitment to the region and we welcome the opportunities this initiative offers our business.”

Over the course of this year, Google Cloud also plans to open more zones and regions in Salt Lake City, Las Vegas and Jakarta, Indonesia.

Powered by WPeMatico

Autonomous yard trucking startup Outrider comes out of stealth with $53 million in funding

The 400,000 distribution yards located in the U.S. are critical hubs for the supply chain. Now one startup is aiming to make the yard truck — the centerpiece of the distribution yard — more efficient, safer and cleaner, with an autonomous system.

Outrider, a Golden, Colo. startup previously known as Azevtec, came out of stealth Wednesday to announce that it has raised $53 million in seed and Series A funding rounds led by NEA and 8VC. Outrider is also backed by Koch Disruptive Technologies, Fraser McCombs Capital, warehousing giant Prologis, Schematic Ventures, Loup Ventures and Goose Society of Texas.

Outrider CEO Andrew Smith said distribution yards are ideal environments to deploy autonomous technology because they’re well-defined areas that are also complex, often chaotic and with many manual tasks.

“This is why a systems approach is necessary to automate every major task in the yard,” Smith said.

Outrider has developed a system that includes an electric yard truck equipped with a full stack self-driving system with overlapping suite of sensor technology such as radar, lidar and cameras. The system automates the manual aspect of yard operations, including moving trailers around the yard as well as to and from loading docks. The system can also hitch and unhitch trailers, connect and disconnect trailer brake lines, and monitor trailer locations.

The company has two pilot programs with Georgia-Pacific and four Fortune 200 companies in designated sections of their distribution yards. Over time, Outrider will move from operating in specific areas of these yards to taking over the entire yards for these enterprise customers, according to Smith.

“Because we’re getting people out of these yard environments, where there’s 80,000 pound vehicles, we’re delivering increased efficiency,” Smith told TechCrunch in a recent interview. That efficiency is not just in moving the trailers around the yard, Smith added. It also helps move the Class 8 semi trailers used for hauling freight long distances through the system and back on the road quickly.

“We can actually reduce the amount of time the over-the-road guys are stuck sitting at a yard trying to do a pickup or drop-off,” Smith said.

Smith sees a big opportunity to demonstrate the responsible deployment of autonomy as well as clean up yards filled with diesel-powered yard trucks.

“If there was ever a location for near-term automation and electrification of the supply chain, it’s here,” he said. “Our customers and suppliers understand there’s a big opportunity for these autonomy systems to accelerate the deployment of 50,000 plus electric trucks in the market because they are a superior platform for automation.”

Powered by WPeMatico

SentinelOne raises $200M at a $1.1B valuation to expand its AI-based endpoint security platform

As cybercrime continues to evolve and expand, a startup that is building a business focused on endpoint security has raised a big round of funding. SentinelOne — which provides a machine learning-based solution for monitoring and securing laptops, phones, containerised applications and the many other devices and services connected to a network — has picked up $200 million, a Series E round of funding that it says catapults its valuation to $1.1 billion.

The funding is notable not just for its size but for its velocity: it comes just eight months after SentinelOne announced a Series D of $120 million, which at the time valued the company around $500 million. In other words, the company has more than doubled its valuation in less than a year — a sign of the cybersecurity times.

This latest round is being led by Insight Partners, with Tiger Global Management, Qualcomm Ventures LLC, Vista Public Strategies of Vista Equity Partners, Third Point Ventures and other undisclosed previous investors all participating.

Tomer Weingarten, CEO and co-founder of the company, said in an interview that while this round gives SentinelOne the flexibility to remain in “startup” mode (privately funded) for some time — especially since it came so quickly on the heels of the previous large round — an IPO “would be the next logical step” for the company. “But we’re not in any rush,” he added. “We have one to two years of growth left as a private company.”

While cybercrime is proving to be a very expensive business (or very lucrative, I guess, depending on which side of the equation you sit on), it has also meant that the market for cybersecurity has significantly expanded.

Endpoint security, the area where SentinelOne concentrates its efforts, last year was estimated to be around an $8 billion market, and analysts project that it could be worth as much as $18.4 billion by 2024.

Driving it is the single biggest trend that has changed the world of work in the last decade. Everyone — whether a road warrior or a desk-based administrator or strategist, a contractor or full-time employee, a front-line sales assistant or back-end engineer or executive — is now connected to the company network, often with more than one device. And that’s before you consider the various other “endpoints” that might be connected to a network, including machines, containers and more. The result is a spaghetti of a problem. One survey from LogMeIn, disconcertingly, even found that some 30% of IT managers couldn’t identify just how many endpoints they managed.

“The proliferation of devices and the expanding network are the biggest issues today,” said Weingarten. “The landscape is expanding and it is getting very hard to monitor not just what your network looks like but what your attackers are looking for.”

This is where an AI-based solution like SentinelOne’s comes into play. The company has roots in the Israeli cyberintelligence community but is based out of Mountain View, and its platform is built around the idea of working automatically not just to detect endpoints and their vulnerabilities, but to apply behavioral models, and various modes of protection, detection and response in one go — in a product that it calls its Singularity Platform that works across the entire edge of the network.

“We are seeing more automated and real-time attacks that themselves are using more machine learning,” Weingarten said. “That translates to the fact that you need defence that moves in real time as with as much automation as possible.”

SentinelOne is by no means the only company working in the space of endpoint protection. Others in the space include Microsoft, CrowdStrike, Kaspersky, McAfee, Symantec and many others.

But nonetheless, its product has seen strong uptake to date. It currently has some 3,500 customers, including three of the biggest companies in the world, and “hundreds” from the global 2,000 enterprises, with what it says has been 113% year-on-year new bookings growth, revenue growth of 104% year-on-year and 150% growth year-on-year in transactions over $2 million. It has 500 employees today and plans to hire up to 700 by the end of this year.

One of the key differentiators is the focus on using AI, and using it at scale to help mitigate an increasingly complex threat landscape, to take endpoint security to the next level.

“Competition in the endpoint market has cleared with a select few exhibiting the necessary vision and technology to flourish in an increasingly volatile threat landscape,” said Teddie Wardi, managing director of Insight Partners, in a statement. “As evidenced by our ongoing financial commitment to SentinelOne along with the resources of Insight Onsite, our business strategy and ScaleUp division, we are confident that SentinelOne has an enormous opportunity to be a market leader in the cybersecurity space.”

Weingarten said that SentinelOne “gets approached every year” to be acquired, although he didn’t name any names. Nevertheless, that also points to the bigger consolidation trend that will be interesting to watch as the company grows. SentinelOne has never made an acquisition to date, but it’s hard to ignore that, as the company to expand its products and features, that it might tap into the wider market to bring in other kinds of technology into its stack.

“There are definitely a lot of security companies out there,” Weingarten noted. “Those that serve a very specific market are the targets for consolidation.”

Powered by WPeMatico

Google Cloud acquires mainframe migration service Cornerstone

Google today announced that it has acquired Cornerstone, a Dutch company that specializes in helping enterprises migrate their legacy workloads from mainframes to public clouds. Cornerstone, which provides very hands-on migration assistance, will form the basis of Google Cloud’s mainframe-to-GCP solutions.

This move is very much in line with Google Cloud’s overall enterprise strategy, which focuses on helping existing enterprises move their legacy workloads into the cloud (and start new projects as cloud-native solutions from the get-go).

“This is one more example of how Google Cloud is helping enterprise customers modernize their infrastructure and applications as they transition to the cloud,” said John Jester, VP of Customer Experience at Google Cloud. “We’ve been making great strides to better serve enterprise customers, including introducing Premium Support, better aligning our Customer Success organization, simplifying our commercial contracting process to make it easier to do business with Google Cloud, and expanding our partner relationships.”

A lot of businesses still rely on their mainframes to power mission-critical workloads. Moving them to the cloud is often a very complex undertaking, which is where Cornerstone and similar vendors come in. It doesn’t help that a lot of these mainframe applications were written in Cobol, PL/1 or assembly. Cornerstone’s technology can automatically break down these processes into cloud-native services that are then managed within a containerized environment. It can also migrate databases as needed.

It’s worth noting that Google Cloud also recently introduced support for IBM Power Systems in its cloud. This, too, was a move to help enterprises move their legacy systems into the cloud. With Cornerstone, Google Cloud adds yet another layer on top of this by providing even more hands-on migration assistance for users who want to slowly modernize their overall stack without having to re-architect all of their legacy applications.

 

Powered by WPeMatico

Microsoft Dynamics 365 update is focused on harnessing data

Microsoft announced a major update to its Dynamics 365 product line today, which correlates to the growing amount of data in the enterprise and how to collect and understand that data to produce better customer experiences.

This is, in fact, the goal of all vendors in this space, including Salesforce and Adobe, which are also looking to help improve the customer experience. James Philips, who was promoted to president of Microsoft Business Applications just this week, says that Microsoft has also been keenly focused on harnessing the growing amount of data and helping make use of that inside the applications he is in charge of.

“To be frank, every single thing that we’re doing at Microsoft, not just in business applications but across the entire Microsoft Cloud, is on the back of that vision that data is coming out of everything, and that those organizations that can collect that data, harmonize it and reason over it will be in a position to be proactive versus reactive,” Philips told TechCrunch.

New customer engagement tooling

For starters, the company is adding functionality to its customer data platform (CDP), a concept all major vendors (and a growing group of startups) have embraced. It pulls together into one place all of the customer data from various systems, making it easier to understand how the customer interacts with you, with the goal of providing better experiences based on this knowledge. Microsoft’s CDP is called Customer Insights.

The company is adding some new connectors to help complete that picture of the customer. “We’re adding new first and third-party data connections to Customer Insights that allow our customers to understand, for example audience memberships, brand affinities, demographic, psychographic and other characteristics of customers that are stored and then harnessed from Dynamics 365 Customer Insights,” Philips said.

All of this might make you wonder how they can collect this level of data and maintain GDPR/CCPA kind of compliance. Philips says that the company has been working on this for some time. “We did work at the company level to build a system that allows us and our customers to search for and then delete information about customers in each product group within Microsoft, including my organization,” he explained.

The company has also added new sales forecasting tools and Dynamics 365 Sales Engagement Center. The first allows companies to tap into all this data to better predict the customers who sales is engaged with that are most likely to turn into sales. The second gives inside sales teams tools like next best action. These are not revolutionary by any means in the CRM space, but do provide new capabilities for Microsoft customers.

New operations-level tooling

The operations side is related to what happens after the sale, when the company begins to collect money and report revenue. To that end, the company is introducing a new product called Dynamic 365 Finance Insights, which you can think of as Customer Insights, except for money.

“This product is designed to help our customers predict and accelerate their cash flow. It’s designed specifically to identify opportunities where to focus your energy, where you may have the best opportunity to either close accounts payables or receivables or the opportunity to understand where you may have cash shortfalls,” Philips said.

Finally the company is introducing Dynamics 365 Project Operations, which provides a way for project-based business like construction, consulting and law to track the needs of the business.

“Those organizations, who are trying to operate in a project-based way now have with Dynamics 365 Project Operations, what we believe is the most widely used project management capability in Microsoft Project being joined now with all of the back-end capabilities for selling, accounting and planning that Dynamic 365 offers, all built on the same Common Data Platform, so that you can marry your front-end operations and operational planning with your back-end resource planning, workforce planning and operational processes,” he explained.

All of these tools are designed to take advantage of the growing amount of data coming into organizations, and provide ways to run businesses in a more automated and intelligent fashion that removes some of the manual steps involved in running a company.

To be clear, Microsoft is not alone in offering this kind of intelligent functionality. It is part of a growing movement to bring intelligence to all aspects of enterprise software, regardless of vendor.

Powered by WPeMatico

BluBracket scores $6.5M seed to help secure code in distributed environments

BluBracket, a new security startup from the folks who brought you Vera, came out of stealth today and announced a $6.5 million seed investment. Unusual Ventures led the round with participation by Point72 Ventures, SignalFire and Firebolt Ventures.

The company was launched by Ajay Arora and Prakash Linga, who until last year were CEO and CTO respectively at Vera, a security company that helps companies secure documents by having the security profile follow the document wherever it goes.

Arora says he and Linga are entrepreneurs at heart, and they were itching to start something new after more than five years at Vera. While Arora still sits on the Vera board, they decided to attack a new problem.

He says that the idea for BluBracket actually came out of conversations with Vera customers, who wanted something similar to Vera, except to protect code. “About 18-24 months ago, we started hearing from our customers, who were saying, ‘Hey you guys secure documents and files. What’s becoming really important for us is to be able to share code. Do you guys secure source code?’”

That was not a problem Vera was suited to solve, but it was a light bulb moment for Arora and Linga, who saw an opportunity and decided to seize it. Recognizing the way development teams operated has changed, they started BluBracket and developed a pair of products to handle the unique set of problems associated with a distributed set of developers working out of a Git repository — whether that’s GitHub, GitLab or BitBucket.

The first product is BluBracket CodeInsight, which is an auditing tool, available starting today. This tool gives companies full visibility into who has withdrawn the code from the Git repository. “Once they have a repo, and then developers clone it, we can help them understand what clones exist on what devices, what third parties have their code, and even be able to search open source projects for code that might have been pushed into open source. So we’re creating what we call a blueprint of where the enterprise code is,” Arora explained.

The second tool, BluBracket CodeSecure, which won’t be available until later in the year, is how you secure that code including the ability to classify code by level importance. Code tagged with the highest level of importance will have special status and companies can attach rules to it like that it can’t be distributed to an open source folder without explicit permission.

They believe the combination of these tools will enable companies to maintain control over the code, even in a distributed system. Arora says they have taken care to make sure that the system provides the needed security layer without affecting the operation of the continuous delivery pipeline.

“When you’re compiling or when you’re going from development to staging to production, in those cases because the code is sitting in Git, and the code itself has not been modified, BluBracket won’t break the chain,” he explained. If you tried to distribute special code outside the system, you might get a message that this requires authorization, depending on how the tags have been configured.

This is very early days for BluBracket, but the company takes its first steps as a startup this week and emerges from stealth next week at the RSA security conference in San Francisco. It will be participating in the RSA Sandbox competition for early security startups at the conference, as well.

Powered by WPeMatico