Case Study: AccessOne achieves visibility into open source risk with Synopsys Black Duck audit services

Gaining Visibility Into Open Source Risk

AccessOne, a patient financing provider founded in 2002 that has helped over one million consumers, needed clear visibility into the software of an acquisition target. CTO Connor Gray was concerned about undisclosed open source components, licensing obligations, connected web services, and potential security or operational risks that could indicate weak code management and pose post-acquisition liabilities.

Synopsys Black Duck performed an on-demand audit—one week of prep and two weeks of analysis—to identify open source components, licensing types, web-service integrations, and related security issues. The thorough findings confirmed expectations, clarified risks and obligations, and gave AccessOne the confidence and due diligence data needed to proceed with the transaction; Gray calls the audit indispensable for M&A tech reviews.

AccessOne

Connor Gray

Chief Technology Officer