DOCSLIB.ORG

Bigfix Platform Open Source Licenses and Notices

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Bigfix Platform Open Source Licenses and Notices ---------------------------------- BigFix Platform 10.0 Jan 2021 ---------------------------------- ------------------------------------------------------------------------- ------------------------------------------------------------------------- The HCL license agreement and any applicable information on the web download page for HCL products refers Licensee to this file for details concerning notices applicable to code included in the products listed above ("the Program"). Notwithstanding the terms and conditions of any other agreement Licensee may have with HCL or any of its related or affiliated entities (collectively "HCL"), the third party code identified below is subject to the terms and conditions of the HCL license agreement for the Program and not the license terms that may be contained in the notices below. The notices are provided for informational purposes. Please note: This Notices file may identify information that is not used by, or that was not shipped with, the Program as Licensee installed it. IMPORTANT: HCL does not represent or warrant that the information in this NOTICES file is accurate. Third party websites are independent of HCL and HCL does not represent or warrant that the information on any third party website referenced in this NOTICES file is accurate. HCL disclaims any and all liability for errors and omissions or for any damages accruing from the use of this NOTICES file or its contents, including without limitation URLs or references to any third party websites. ------------------------------------------------------------------------- ------------------------------------------------------------------------- <<START OF Platform 10.0.2>> ====== DETAIL 1: Platform 10.0.2 ====== License Library Description License Reference Copyrights Homepage Author Apache 2.0 libbson-1.0.dll https://github.com/mongodb/mongo-c- driver/blob/1.14.0/COPYING Apache 2.0 libmongoc-1.0.dll License File (https://github.com/mongodb/mongo-c-driver/blob/1.14.0/COPYING) Apache 2.0 mongo-c-driver-1.14.0* A high-performance MongoDB driver for C License File (https://github.com/mongodb/mongo-c- driver/blob/1.14.0/COPYING) http://mongoc.org mongodb Apache 2.0 pdfium-chromium/3987* License File (LICENSE) https://pdfium.googlesource.com/pdfium [email protected] Apache 2.0 xerces-c-Xerces-C_3_2_2 Mirror of Apache Xerces C++ License File (https://github.com/apache/xerces-c/blob/Xerces- C_3_2_2/LICENSE) 2017 The Apache Software Foundation https://github.com/apache/xerces-c/zipball/Xerces-C_3_2_2 apache Apache 2.0 xqilla-XQilla-2.3.1 https://sourceforge.net/p/xqilla/ https://sourceforge.net/p/xqilla/ jason_e_stewart Apache 2.0 xqilla-XQilla-2.3.3 https://sourceforge.net/p/xqilla/ https://sourceforge.net/p/xqilla/ jason_e_stewart Artistic 2.0 resizablelib-v1.4a A set of MFC classes to easily make resizable windows https://github.com/irwir/resizablelib/blob/master/LICENSE.md https://github.com/irwir/resizablelib/zipball/v1.4a irwir Boost boost-boost_1_36_0 Free peer-reviewed portable C++ source libraries https://github.com/boostorg/boost/blob/boost- 1.36.0/LICENSE_1_0.txt https://sourceforge.net/p/boost/ eric_niebler Boost boost-boost_1_73_0 Free peer-reviewed portable C++ source libraries https://sourceforge.net/projects/boost/ https://sourceforge.net/p/boost/ beman_dawes Boost boost-boost-1.36.0 Super-project for modularized Boost License File (https://github.com/boostorg/boost/blob/boost- 1.36.0/LICENSE_1_0.txt) 2008 Copyright 2008 Beman Dawes, Rene Rivera https://github.com/boostorg/wiki/wiki/Getting-Started%3A-Overview boostorg Boost boost-v1.74.0 boost as used by ALICE experiment. Please refer to the official web pages (http://boost.org) unless you know what you are doing. License File (index.html) https://github.com/alisw/boost/zipball/v1.74.0 alisw BSD yahoo-dom-event-2.9.0.js YUI 3 Source https://cdnjs.com/libraries/yui/2.9.0 &url Yahoo! Inc. http://yuilibrary.com/ BSD yahoo-min-2.9.0.js YUI 3 Source https://cdnjs.com/libraries/yui/2.9.0 http://yuilibrary.com/ BSD yuiloader-dom-event-2.9.0.js YUI 3 Source https://cdnjs.com/libraries/yui/2.9.0 http://yuilibrary.com/ BSD yuiloader-min-2.9.0.js YUI 3 Source https://cdnjs.com/libraries/yui/2.9.0 http://yuilibrary.com/ BSD yuitest_core-min-2.9.0.js YUI 3 Source https://cdnjs.com/libraries/yui/2.9.0 http://yuilibrary.com/ BSD yuitest-min-2.9.0.js YUI 3 Source https://cdnjs.com/libraries/yui/2.9.0 http://yuilibrary.com/ BSD 2 yui-2.7.0 Mirror of YUI releases with JS.Class package metadata https://github.com/yui/yui3/blob/master/LICENSE.md 2009 Copyright 2009 Yahoo! https://github.com/othermedia/yui/zipball/2.7.0 othermedia BSD 3 libssh2-libssh2-1.9.0 the SSH library License File (https://github.com/libssh2/libssh2/blob/libssh2-1.9.0/README.md) "2006-2007 Copyright 2006-2007 The Written Word, Inc 2004-2007 Copyright 2004-2007 Sara Golemon <[email protected]> 2005-2006 Copyright 2005-2006 Mikhail Gusarov <[email protected]> 2007 Copyright 2007 Eli Fant <[email protected]> 2008-2009 Copyright 2008-2009 Simon Josefsson 2009-2014 Copyright 2009-2014 Daniel Stenberg" https://www.libssh2.org/ libssh2 BSD 3 pdfium-chromium/3987* License File (LICENSE) https://pdfium.googlesource.com/pdfium [email protected] Commercial msxml6.dll Microsoft Corporation Commercial vccorlib110.dll vccorlib110.dll:dll Commercial Commercial vccorlib110-11.0.51106.1.dll Microsoft ® VC WinRT core library https://www.microsoft.com/en-us/download/details.aspx?id=30679 https://api.nuget.org/packages/microsoft.handsfree.mouse.1.0.4.nupk g Microsoft Corporation curl curl-curl-7_64_0 A command line tool and library for transferring data with URL syntax, supporting HTTP, HTTPS, FTP, FTPS, GOPHER, TFTP, SCP, SFTP, SMB, TELNET, DICT, LDAP, LDAPS, FILE, IMAP, SMTP, POP3, RTSP and RTMP. libcurl offers a myriad of powerful features https://github.com/curl/curl/tree/curl-7_64_0 "1996-2019 Copyright 1996-2019 Daniel Stenberg, <[email protected]>, and many 1998-1999 Copyright 1998-1999 Kungliga 1998 Copyright 1998 1999" https://curl.haxx.se/ curl curl curl-curl-7_73_0 A command line tool and library for transferring data with URL syntax, supporting HTTP, HTTPS, FTP, FTPS, GOPHER, TFTP, SCP, SFTP, SMB, TELNET, DICT, LDAP, LDAPS, MQTT, FILE, IMAP, SMTP, POP3, RTSP and RTMP. libcurl offers a myriad of powerful features https://github.com/curl/curl/tree/curl-7_73_0 2020 Daniel Stenberg https://curl.haxx.se/ curl ICU License icu-icu-milestone-4-1-2 The new home of the ICU project source code. https://github.com/unicode-org/icu/blob/icu-milestone-4- 1-2/license.html http://icu-project.org unicode-org ISC libuv-v1.9.1 Cross-platform asynchronous I/O License File (https://github.com/libuv/libuv/blob/v1.9.1/LICENSE) Copyright Joyent, Inc. and other Node contributors https://libuv.org/ libuv ISC mongo-c-driver-1.14.0* A high-performance MongoDB driver for C License File (https://github.com/mongodb/mongo-c- driver/blob/1.14.0/THIRD_PARTY_NOTICES) http://mongoc.org mongodb ISC yajl-2.1.0 A fast streaming JSON parsing library in C. License File (null) http://lloyd.github.com/yajl lloyd Microsoft Visual C++ 2010 Runtime Libraries msvcp110-11.00.51106.1.dll Microsoft® C Runtime Library https://docs.microsoft.com/en- us/visualstudio/productinfo/2012-redistribution-vs#SDK 2020 Microsoft Corporation https://api.nuget.org/packages/microsoft_c_runtime_v.1.0.1.nupkg Microsoft Corporation Microsoft Visual C++ 2010 Runtime Libraries msvcr110-11.00.51106.1.dll Microsoft® C Runtime Library https://docs.microsoft.com/en- us/visualstudio/productinfo/2012-redistribution-vs#SDK 2020 Microsoft Corporation https://api.nuget.org/packages/mapsuitedependency- microsoftvisualcruntime100.10.5.1.nupkg Microsoft Corporation MIT cyrus-sasl-cyrus-sasl-2.1.26 Cyrus sasl fork from git://git.cyrusimap.org/cyrus-sasl License File (https://github.com/wingtk/cyrus-sasl/blob/cyrus-sasl-2.1.26/README.GS2) "1998-2003 Copyright 1998-2003 Carnegie Mellon University 1999-2003 Copyright 1999-2003 The OpenLDAP Foundation, Redwood City," https://github.com/wingtk/cyrus-sasl/zipball/cyrus-sasl-2.1.26 wingtk MIT jQPlot-1.0.9 JQplot revival https://github.com/svandecappelle/jQPlot/blob/1.0.9/LICENSE 2014 Copyright 2014 svandecappelle http://svandecappelle.github.io/jQPlot/ svandecappelle MIT jquery.jqplot-1.0.9.min.js jqPlot is a plotting and charting plugin for the jQuery Javascript framework. jqPlot produces beautiful line, bar and pie charts with many features. https://cdnjs.com/libraries/jqPlot/1.0.9 http://www.jqplot.com/ MIT jquery-3.5.1.js JavaScript library for DOM operations https://cdnjs.com/libraries/jquery/3.5.1 http://jquery.com/ MIT jquery-3.5.1.min.js JavaScript library for DOM operations https://cdnjs.com/libraries/jquery/3.5.1 2020 Copyright 2020 OpenJS Foundation and jQuery contributors http://jquery.com/ MIT jquery-ui-1.12.1.js A curated set of user interface interactions, effects, widgets, and themes built on top of the jQuery JavaScript Library. https://cdnjs.com/libraries/jqueryui/1.12.1 2014 Copyright 2014 jQuery Foundation and other contributors http://jqueryui.com/ MIT jquery-ui-1.12.1.min.js A curated set of user interface interactions, effects, widgets, and themes built on top of the jQuery JavaScript Library. https://cdnjs.com/libraries/jqueryui/1.12.1 &url The jQuery Foundation. http://jqueryui.com/ MIT mongo-c-driver-1.14.0* A high-performance MongoDB driver for C License File (https://github.com/mongodb/mongo-c- driver/blob/1.14.0/THIRD_PARTY_NOTICES) http://mongoc.org mongodb MIT rapidxml-1.13 RapidXml is an attempt to create the fastest XML
Load more

Recommended publications
  • Differential Fuzzing the Webassembly
    Master’s Programme in Security and Cloud Computing Differential Fuzzing the WebAssembly Master’s Thesis Gilang Mentari Hamidy MASTER’S THESIS Aalto University - EURECOM MASTER’STHESIS 2020 Differential Fuzzing the WebAssembly Fuzzing Différentiel le WebAssembly Gilang Mentari Hamidy This thesis is a public document and does not contain any confidential information. Cette thèse est un document public et ne contient aucun information confidentielle. Thesis submitted in partial fulfillment of the requirements for the degree of Master of Science in Technology. Antibes, 27 July 2020 Supervisor: Prof. Davide Balzarotti, EURECOM Co-Supervisor: Prof. Jan-Erik Ekberg, Aalto University Copyright © 2020 Gilang Mentari Hamidy Aalto University - School of Science EURECOM Master’s Programme in Security and Cloud Computing Abstract Author Gilang Mentari Hamidy Title Differential Fuzzing the WebAssembly School School of Science Degree programme Master of Science Major Security and Cloud Computing (SECCLO) Code SCI3084 Supervisor Prof. Davide Balzarotti, EURECOM Prof. Jan-Erik Ekberg, Aalto University Level Master’s thesis Date 27 July 2020 Pages 133 Language English Abstract WebAssembly, colloquially known as Wasm, is a specification for an intermediate representation that is suitable for the web environment, particularly in the client-side. It provides a machine abstraction and hardware-agnostic instruction sets, where a high-level programming language can target the compilation to the Wasm instead of specific hardware architecture. The JavaScript engine implements the Wasm specification and recompiles the Wasm instruction to the target machine instruction where the program is executed. Technically, Wasm is similar to a popular virtual machine bytecode, such as Java Virtual Machine (JVM) or Microsoft Intermediate Language (MSIL).
    [Show full text]
  • Deadline-Driven Serverless for the Edge
    SledgeEDF: Deadline-driven Serverless for the Edge by Sean Patrick McBride B.S. in German, May 2007, United States Military Academy M.A.S. in Information Technology and Management, May 2013, Illinois Institute of Technology A Thesis submitted to The Faculty of The School of Engineering and Applied Science of The George Washington University in partial satisfaction of the requirements for the degree of Master of Science January 8, 2021 Thesis directed by Gabriel Parmer Associate Professor of Computer Science c Copyright 2021 by Sean Patrick McBride All rights reserved ii Dedication This thesis is dedicated to the many educators, mentors, and battle buddies that have helped me grow as a technologist, software engineer, and computer scientist. Sankaran Iyer, Susan Schwartz, Chris Okasaki, Christa Chewar, Ray Trygstad, Jeremy Hajek, Jeffrey Kimont, Robert Hendry, Carol Davids, Bill Slater, Bonnie Goins, David Gaertner, Andy Quintana, Patricia Schatz, Wayne Bucek, Pat Medo, Lih Wang, Tony Liu, Bill Seubert, Marty Horan, Fred Bader, Mitch Green, Bob Kaas, Richard Lewis, Gwen Dente, Ray Mullins, Frank DeGilio, Paul Novak, Bruce Hayden, Art Breslau, Chris Ganim, Mark Woehrer, Will Dory, Steve Payne, Walt Melo, Mark Davis, Omri Bernstein, Eliot Szwajkowski, Dani Young-Smith, Conrad Holloman, David Tillery, Garth Hershfield, Daniel Cox, Doug Fort, Jeff Hemminger, Josh Rutherford, Hiromi Suenaga, Kait Moreno, Howie Huang, Ben Bowman, Yuede Ji, Pradeep Kumar, Nahid Ghalaty, Roozbeh Haghnazar, Morris Lancaster, Gabe Parmer, Phani Kishoreg, and the unnamed others I’ve forgotten. I am mostly an ambulatory accumulation of the investments others have made in me over the years. I hope that you consider me a worthy investment, and I pledge to pay this forward! iii Abstract SledgeEDF: Deadline-driven Serverless for the Edge Serverless Computing has gained mass popularity by offering lower cost, improved elasticity, and improved ease of use.
    [Show full text]
  • Full Stack Web Development
    Full Stack Web Development Partial report in partial fulfilment of the requirement of the Degree of Bachelor of Technology In Computer Science and Engineering By Charchit Kapoor (161207) Under the supervision of Umesh Sharma Product Manager (magicPin Samast Technologies Pvt. Ltd) To Department of Computer Science Engineering and Information Technology Jaypee University of Information Technology,Waknaghat,Solan-173234 Himachal Pradesh I CERTIFICATE Candidate Declaration I”declare that the work presented in this report ‘Full Stack Web Development’ in partial fulfilment of”the requirements for the award of the degree of bachelor of Technology in Computer Science and Engineering submitted in the department of Computer Science and Engineering/ Information Technology,”Jaypee University of Information Technology Waknaghat, is an authentic record of my work carried out over a period of Feb,2020 to”May,2020 under the Supervision of Umesh Sharma (Product Manager, magicPin). The matter embodied in the report”has not been submitted for the award of any other degree or diploma. It contains sufficient”information to describe the various tasks performed by me during the internship. Charchit Kapoor, 161207 This is to certify that”the above statement made by the candidate is true to the best of my knowledge. The report has been reviewed by the company officials, and has been audited according to the company guidelines. Umesh Sharma Product Manager magicPin (Samast Technologies Private Ltd.) Dated: May 29th, 2020 II ACKNOWLEDGEMET We have taken efforts in”this project. However, it would not have been possible without the kind support and help of many”individuals and organisations. I would like to extend our sincere thanks to all of them.
    [Show full text]
  • International Journal of Progressive Research in Science and Engineering, Vol.2, No.8, August 2021
    INTERNATIONAL JOURNAL OF PROGRESSIVE RESEARCH IN SCIENCE AND ENGINEERING, VOL.2, NO.8, AUGUST 2021. Web Application to Search and Rank Online Learning Resources from Various Sites Keshav J1, Venkat Kumar B M1, Ananth N1 1Student, Department of Computer Engineering, Velammal Engineering College, Anna University, Chennai, Tamil Nadu, India. Corresponding Author: [email protected] Abstract: - E-Learning is becoming one of the most reliable and fast methods for learning in the present days and this trend will only continue to grow in the coming years. However, the process of finding the correct course in the desired topic is becoming harder and harder day by day due to the sheer number of resource material being uploaded to the internet. Currently, whenever there’s a need to acquire a new skill or learn something new, people go on different platforms to search for resources to learn them - YouTube for videos, Google for blogs, Coursera/Udemy/Edx for courses. This leads to taking too much time in finding the right resource to start learning. They have to try out multiple resources before finding the right one. We plan to eliminate this with our website, where a single search query will fetch the top videos, blogs, and courses for that query. Users will be able to rate the results, and the upcoming search results will be ordered primarily based on the user ratings. This will allow the most useful blogs, courses, and videos to rank up. Additionally, the resources will have comments and tags, so that the user can read a review before opening a tutorial.
    [Show full text]
  • AMP's Governance Model
    Governance Update & Next Steps AMP Contributor Summit - October 10, 2019 Tobie Langel (@tobie) bit.ly/ampgov-blog AMP’s Governance Model ● The Technical Steering Committee (TSC) ● The Advisory Committee (AC) ● Working Groups (WGs) Technical Steering Committee (TSC) Sets AMP's technical & product direction based on the project guidelines. TSC Members ● Chris Papazian, Pinterest - @cpapazian* ● David Strauss, Pantheon - @davidstrauss* ● Dima Voytenko, Google - @dvoytenko* ● Malte Ubl, Google - @cramforce* ● Paul Armstrong, Twitter - @paularmstrong ● Rudy Galfi, Google - @rudygalfi* ● Saulo Santos, Microsoft - @ssantosms* * Present at the AMP Contributor Summit 2019 So… what has the TSC been up to? ● Set up the initial set of Working Groups. ● Clarified the contribution process (OWNERS/Reviewers/Collaborators). ● Formalized how cherry picks are handled. ● Asked for more formal regular updates from the Working Groups. Working Groups (WGs) Segments of the community with knowledge/interest in specific areas of AMP. Working groups ● Access control and subscriptions WG - user ● AMP4Email WG - AMP4Email project. specific controlled access to AMP content. ● Ads WG - ads features and integrations in AMP ● Validation & caching WG - AMP validator and ● Analytics WG - analytics features and integrations features related to AMP caches. in AMP. ● Viewers WG - ensures support for AMP viewers ● Stories WG - implements and improves AMP's and for the amp-viewer project. story format. ● Approvers WG - approves changes that have a ● Performance WG - monitors and improves AMP's significant impact on AMP's behavior or significant load and runtime perf. new features. ● Runtime WG - AMP's core runtime ● Infrastructure WG - AMP's infrastructure, (layout/rendering and data binding). including building, testing and release. ● UX & Accessibility WG - AMP's visual ● Code of Conduct WG - enforces AMP's CoC.
    [Show full text]
  • Recent Enhancements of Node-RED for Rapid Development of Large Scale and Robust Iot Applications
    Recent Enhancements of Node-RED for Rapid Development of Large Scale and Robust IoT Applications . .2.2 0.,21010 Agenda 1. Introduction to Node-RED 2. Flow-based Programming in Node-RED 3. Recent Features of Node-RED © Hitachi, Ltd. 2019. All rights reserved. 2 Agenda 1. Introduction to Node-RED 2. Flow-based Programming in Node-RED 3. Recent Features of Node-RED © Hitachi, Ltd. 2019. All rights reserved. 3 What is Node-RED? OSS Visual Programing Tool for IoT Applications Development p Originally developed by IBM. Currently project under OpenJS Foundation p Works on broad range of computers: Small IoT devices to Cloud Env. p Rapid development of Applications by connecting set of predefined nodes d9RLRM)*02UURP[N[NNM 4 Growing Use of Node-RED Node-RED users are growing continuously since its introduction: p Over 60K downloads/month in 2019 p 1.8M accumulated downloads in 2019 (K downloads) Accumulated(Left) Monthly(Right) (K downloads) 2,000 80 70 1,500 60 50 1,000 40 30 Number of Number Number of Number 500 20 10 Downloads/Month Accumulated Downloads Downloads Accumulated 0 0 Jan '15 Jan '16 Jan '17 Jan '18 Jan '19 NPM download Statistics of Node-RED d9RLRM)*02UURP[N[NNM 5 Production Use of Node-RED Major IT companies adopting Node-RED for their products/services For Edge Environment: In HITACHI: p Use Node-RED in "DevOps for IoT" application :WNU BRNVNW[ 8 ":XC8Na ":C)) "NMR development env. of Lumada Solution Hub* BV[]WP CX[RK 4 "2AC: "B:G "4G:E Cloud Environment: :3 2CC 4:B4 ":34UX]M "2CCUX5N[RPWN "NTR BRNVNW[ ]SR[] 9:C249: "RWMBNN "4:2 "]VM *: [1((RLRLXV(N(LWN[(VXW()*0(),(*0),*/VU d9RLRM)*02UURP[N[NNM 6 HITACHI's Contribution to Node-RED p HITACHI started OSS activities on Node-RED in 2017 p Added features to Node-RED and contributed them to community (over 51,000 lines of code) Lines of codes in Node-RED repository 50,000 40,000 Other 30,000 HITACHI started IBM 20,000 contribution HITACHI 10,000 0 Jan-16 Jan-17 Jan-18 Jan-19 Contributor's Ranking of GitHub: 5 from HITACHI in top 10 Contributions from HITACHI d9RLRM)*02UURP[N[NNM 7 Agenda 1.
    [Show full text]
  • Investigating Reason As a Substitute for Javascript
    DEGREE PROJECT IN COMPUTER ENGINEERING, FIRST CYCLE, 15 CREDITS STOCKHOLM, SWEDEN 2020 Investigating Reason as a substitute for JavaScript AXEL PETTERSSON KTH ROYAL INSTITUTE OF TECHNOLOGY SCHOOL OF ELECTRICAL ENGINEERING AND COMPUTER SCIENCE Investigation of Reason as a substitute for JavaScript AXEL PETTERSSON Degree Programme in Information and Communication Technology Date: June 4, 2020 Supervisor: Thomas Sjöland Examiner: Johan Montelius School of Electrical Engineering and Computer Science Host company: Slagkryssaren AB Swedish title: Undersökning av Reason som ett substitut till JavaScript Investigation of Reason as a substitute for JavaScript / Undersökning av Reason som ett substitut till JavaScript c 2020 Axel Pettersson Abstract | i Abstract JavaScript has in recent years become one of the most utilized programming languages for developing different kinds of applications. However, even though it has received a lot of praise for its simplicity, versatility and highly active community, it lacks some functionalities and features that a lot of programmers highly value, like static and strict typing, compile-time debugging, and to not be required to make use of third-party libraries to integrate crucial functionality. However, several new languages built on top of JavaScript have been developed to address and resolve these issues developers find with JavaScript without losing the benefits that come with it. One of these super- set languages is Reason, the new syntax and toolchain powered by the OCaml compiler. This thesis aims to address whether there are scenarios where Reason could act as a reasonable substitute of JavaScript by investigating how the languages compare in regards to different criteria. The criteria examined are writability, data structures and typing, reliability and testing, community support, market demand, portability, and performance.
    [Show full text]
  • X-XSS- Protection
    HTTP SECURITY HEADERS (Protection For Browsers) BIO • Emmanuel JK Gbordzor ISO 27001 LI, CISA, CCNA, CCNA-Security, ITILv3, … 11 years in IT – About 2 years In Security Information Security Manager @ PaySwitch Head, Network & Infrastructure @ PaySwitch Head of IT @ Financial Institution Bug bounty student by night – 1st Private Invite on Hackerone Introduction • In this presentation, I will introduce you to HyperText Transfer Protocol (HTTP) response security headers. • By specifying expected and allowable behaviors, we will see how security headers can prevent a number of attacks against websites. • I’ll explain some of the different HTTP response headers that a web server can include in a response, and what impact they can have on the security of the web browser. • How web developers can implement these security headers to make user experience more secure A Simple Look At Web Browsing Snippet At The Request And Response Headers Browser Security Headers help: ➢ to define whether a set of security precautions should be activated or Why deactivated on the web browser. ➢ to reinforce the security of your web Browser browser to fend off attacks and to mitigate vulnerabilities. Security ➢ in fighting client side (browser) attacks such as clickjacking, Headers? injections, Multipurpose Internet Mail Extensions (MIME) sniffing, Cross-Site Scripting (XSS), etc. Content / Context HTTP STRICT X-FRAME-OPTIONS EXPECT-CT TRANSPORT SECURITY (HSTS) CONTENT-SECURITY- X-XSS-PROTECTION X-CONTENT-TYPE- POLICY OPTIONS HTTP Strict Transport Security (HSTS)
    [Show full text]
  • Project Evaluation Report
    Project Evaluation Report Project Title: SMART-bridge-to-WEB School/Department: Design, Creative and Digital Industries/Computer Science and Engineering Project Team: Wesam Makadicy, Tomasz Wasowski, Marius Ignat, Nasro ABdi Hassan Sharif, Adam Ahmed-Keyte, Alexander Bolotov, GaBriele Pierantoni, David Chan You Fee Abstract An analysis of the SMARTEST website [1] node view was conducted to gather what features should be transferred over to SMART-bridge-to-WEB (SB2W). Then, several prototypes were created from the requirements identified during analysis until a final master prototype was developed. This prototype was used as a reference for the project’s implementation, which can be viewed at [2]. The report is concluded by reflecting on our teamworK, how the project went, and on what we will do next with the project. Introduction This project aims at developing a web-based application which will target an additional functionality to the already developed Knowledge and learning platform SMARTEST [1]. The platform, as it currently stands, enables interactions between students and academics, represents learning content graphically in forms of module structures and learning processes. It has attracted more than 300 registered student users both from University of Westminster (UoW) and various groups of students at our partner university in TashKent – Westminster International University in TashKent (WIUT). This is due to it offering a more interactive interface of building learning content in the form of graphs and learning paths [3], which other existing learning platforms such as BlacKboard [4] does not. However, for many student users and academics, specifically for those not from STEM disciplines, the representation of learning content in the form of graphs may not be ideal as it requires an understanding of the additional graph structure/concept.
    [Show full text]
  • Open Source Software As Intangible Capital: Measuring the Cost and Impact of Free Digital Tools Preliminary Draft October 31, 20181 Carol A
    Open Source Software as Intangible Capital: Measuring the Cost and Impact of Free Digital Tools Preliminary Draft October 31, 20181 Carol A. Robbins*(1), Gizem Korkmaz (2), José Bayoán Santiago Calderón (3), Daniel Chen (2), Claire Kelling (4) , Stephanie Shipp (2), Sallie Keller (2) Abstract Open source software is everywhere, both as specialized applications nurtured by devoted user communities, and as digital infrastructure underlying platforms used by millions daily, yet its value and impact are not currently measured (with small exceptions). We develop an approach to document the scope and impact of open source software created by all sectors of the economy: businesses, universities, government research institutions, nonprofits, and individuals. We use a bottom-up approach to measure subset of OSS projects and languages, collecting data on open source software languages R, Python, Julia, and JavaScript, as well as from the Federal Government’s code.gov website. Using lines of code and a standard model to estimate package developer time, we convert lines of code to resource cost. We estimate that the resource cost for developing R, Python, Julia, and JavaScript exceeds $3 billion dollars, based on 2017 costs. Applying this approach to open source software available on code.gov results in an estimated value of more than $1 billion, based on 2017 costs, as a lower bound for the resource cost of this software. We analyze the dependencies between software packages through network analysis and estimate re-use statistics. This reuse is one measure of relative impact. Key words: Open Source Software, Intangibles, Network Analysis National Center for Science and Engineering Statistics, National Science Foundation; 2) Social & Decision Analytics Division, Biocomplexity Institute & Initiative, University of Virginia; 3) Claremont Graduate University; 4) Pennsylvania State University 1 An earlier version of this paper was presented August 21, 2018 at the International Association for Research on Income and Wealth.
    [Show full text]
  • Openjs Foundation's Trademarks
    OpenJS Foundation’s Trademarks The OpenJS Foundation’s Trademark Usage Guidelines can be found at https://trademark-usage.openjsf.org. The current version of this trademark list can be found at ​ https://trademark-list.openjsf.org. ​ Word Marks The OpenJS Foundation has the following registered trademarks in the United States and/or other countries: ● Appium ® ● Appiumconf ® ● ESLint ® ● Globalize ® ● jQuery ® ● jQuery Mobile ® ● jQuery UI ® ● JS Foundation ® ● Lodash ® ● Moment.js ® ● Node-RED ® ● QUnit ® ● RequireJS ® ● Sizzle ® ● Sonarwhal ® ● Webpack ® ● Write Less, Do More ® The OpenJS Foundation has registrations pending or trademarks in use for the following marks in the United States and/or other countries: ● Architect ™ ● Chassis ™ ● Dojo Toolkit ™ ● Esprima ™ ● Grunt ™ ● HospitalRun ™ ● Interledger.js ™ ● Intern ™ ● Jed ™ ● JerryScript ™ ● Marko ™ ● Mocha ™ ● OpenJS Foundation ™ ● PEP ™ ● WebdriverIO ™ Logo Marks In addition, the OpenJS Foundation and its projects have visual logo trademarks in use and you must comply with any visual guidelines or additional requirements that may be included on the OpenJS Foundation’s or the applicable project’s site. The OpenJS Foundation has registered trademarks for the following logo marks in the United States and/or other countries: ● Appium Logo. US Reg. #5329685 ● ESLint Logo. US Reg. #5376005 ● Globalize Logo. US Reg. #5184729 ● jQuery Logo. US Reg. #4764564 ● jQuery Mobile Logo. US Reg. #4772527 ● jQuery UI Logo. US Reg. #4772526 ● JS Foundation Logo. US Reg. #5247752 ● JS Foundation
    [Show full text]
  • 2021 Event Sponsorship Prospectus
    2021 Event Sponsorship Prospectus “We met some of the brightest and most talented attendees, and learned first-hand from industry leaders. The Linux events and sponsorship team made sure we had everything we needed for a successful event. We’re looking forward to more Linux Foundation events in the future!” -EMC Table of Contents Additional 2021 events will be added as dates are finalized. About Linux Foundation Events ...................................... 3 MAY Audience Snapshot ........................................................ 4 KubeCon + CloudNativeCon Europe .............................. 31 May 4 - 7, 2021 | Virtual Promotional Marketing Opportunities .............................. 59 Cloud Native Rust Day .................................................... 33 May 3, 2021 | Virtual LINUX FOUNDATION EVENTS PromCon ........................................................................ 34 May 3, 2021 | Virtual MARCH Cloud Native Security Day .............................................. 35 Open Networking & Edge Executive Forum .................... 6 May 4, 2021 | Virtual March 10-12, 2021 | Virtual Cloud Native Wasm Day ................................................. 36 May 4, 2021 | Virtual SEPTEMBER KVM Forum ..................................................................... 8 Crossplane Community Day ........................................... 37 May 4, 2021 | Virtual September 15-16, 2021 | Virtual Linux Plumbers Conference ............................................ 9 FluentCon ......................................................................
    [Show full text]