![]() ![]() In addition, business customers, or those who may be interested, can better meet compliance requirements by being able to review our code." "Customers and the curious can also explore the algorithms and logic behind password management software in general. "The main benefit of making this code public is that anyone can audit the code and understand how we build the Dashlane mobile application," the company wrote. Moreover, with rivals in the password management space such as Bitwarden - which recently raised $100 million in funding - flaunting their open credentials, this puts added pressure on the likes of Dashlane to adopt a similar transparent philosophy. While it's not clear to what extent releasing its mobile app codebase would avert such a breach from happening to Dashlane, there's significant merit in the old adage from the open source sphere that "there's no security through obscurity" - and Dashlane clearly wants to earn some extra transparency points from its business customers. ![]() Indeed, today's announcement comes a couple of months after its rival LastPass announced a data breach, with cybercriminals going on to steal some of its customers' password vaults. And this hints at one of the main reasons the company is looking to open up its codebase just a little bit. ![]() While the New York-based company was originally all about the consumer market, it has been doubling down on its enterprise credentials since the launch of Dashlane Business back in 2016, bolstered somewhat by a $110 million round of funding led by Sequoia four years ago. ![]() "You won’t be able to build your very own Dashlane with this code - we’re sharing the recipe, but we had to leave out a few of the ingredients that make it our own," the company wrote.įounded in 2009, Dashlane is one of a number of password-management service providers that allows users to generate and store robust and unique passwords for all their online services - after all, compromised passwords are responsible for the lion's share of security breaches. However, the company said that it has stripped out some key elements from its release, effectively hamstringing what third-party developers are able to do with the code. Eventually, we plan on allowing other developers to contribute actively, and participate in the development of Dashlane."ĭashlane has released the code under a Creative Commons Attribution-NonCommercial 4.0 license, which technically means that users are allowed to copy, share and build upon the codebase so long as it's for non-commercial purposes. "But this also requires another level of internal organization. "While we are not yet in a position to accept contributions to the code, in the future we aspire to make it so external contributors can suggest improvements directly in GitHub," the company wrote in a blog post today. Initially, Dashlane said that it was planning to make its codebase "fully open source," but in response to a handful of questions posed by TechCrunch, it appears that won't in fact be the case.Īt first, the code will be open for auditing purposes only, but in the future it may start accepting contributions too - however, there is no suggestion that it will go all-in and allow the public to fork or otherwise re-use the code in their own applications. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |