Shareware applications vs. commercial software

Considering using a shareware application? In this information security threats Ask the Expert Q&A, SearchSecurity's resident expert Ed Skoudis examines if commercial software product are more secure than shareware applications.

Ed Skoudis, Counter Hack

Are shareware applications more vulnerable to security risks than commercial software?

Not necessarily. It all comes down to how much you trust the developer. A poorly developed commercial application could have far more security holes than a carefully constructed shareware application. Shareware is merely an economic model, not a design or implementation methodology. Thus, good and bad software security can come from either model, and neither is inherently more or less secure.

However, when it comes to poor security, you may have more legal options with commercial software. While commercial vendors try to relinquish responsibility for poorly designed applications through complex license agreements, if you can prove they were negligent, and they knew about security holes, you could file a claim based on the software you purchased. However, in a shareware environment, because you haven't paid for the software, from a legal perspective your options could be limited.

Also, look beyond the license agreements, and consider the support option. Most commercial application developers offer support for security flaws, and issue patches periodically, whereas some shareware developers offer great support while others do not. The latter are the hobbyists, who may have created a great program, but then moved on to other things, leaving their software orphaned from a support perspective. While software orphans exist on the commercial side, they're more plentiful in the shareware community.

MORE INFORMATION

Visit our resource center for news, tips and expert advice on how to work with information security vendors.

This was last published in July 2006

Shareware applications vs. commercial software

Considering using a shareware application? In this information security threats Ask the Expert Q&A, SearchSecurity's resident expert Ed Skoudis examines if commercial software product are more secure than shareware applications.

Dig Deeper on Open source security tools and software

dark pattern

IPO Consults on Copyright on Orphan Works: a rather more important topic that it seems

Conduit browser hijacker

shareware

Related Q&A from Ed Skoudis

How to combat the top 5 enterprise social media risks in business

Can a hacker actually post malicious scripts to any server using a drop-down list?

What tools can a hacker use to crack a laptop password?

SearchCloudSecurity

6 SaaS security best practices to protect applications

Review these 7 CASB vendors to best secure cloud access

CASB explained: Know its use cases before you buy

SearchNetworking

Considerations for SASE management and troubleshooting

Cisco sweetens Acacia deal by $2 billion

SASE challenges include network security roles, product choice

SearchCIO

Parler sues AWS, seeks restraining order

Digital healthcare top priority for CIOs in 2021

C-suite execs give future technology predictions for the decade

SearchEnterpriseDesktop

Will Windows 10 be the last Windows OS?

CES: Laptops sport designs friendly for remote workers

Evaluate if Windows 10 needs third-party antivirus

SearchCloudComputing

COVID-19 and remote work shift cloud predictions for 2021

Cloud providers jockey for 2021 market share

How to build a cloud center of excellence

ComputerWeekly.com

UKtech50: The 2021 longlist

Community Fibre to supply free 50Mbps broadband for vulnerable London households

The UK tech sector has been a force for good during the Covid-19 pandemic