Get Started Book a Demo

Commercial Off-The-Shelf (COTS)

5th May 2020 | Cybrary Commercial Off-The-Shelf (COTS)


cots cybrary

Commercial Off-The-Shelf (COTS) in cybersecurity is a computer hardware or software product made for nearly any user because it is available to the general public for purchase. COTS products are designed to be very user friendly. A typical example of a COTS product is Microsoft Office. COTS products are available off-the-shelf and do not require custom development before installation. 

Advantages of COTS Software

COTS software usually enjoys the following benefits:

  • fully supported by the vendor
  • 3rd party integrators can help you train on the product or implement the solution because it is universally available to a large customer base
  • a predictable hardware or software life-cycle by a stable well-funded software company
  • longevity of use
Disadvantages of Custom Written Software

In comparison to COTS software solutions, some SMBs attempt to write their own specific software solutions to solve specific problems they face. Now, this may be the only way to solve a problem critical to your SMB.  If that’s the case, perhaps go for it.  However, know the following risks:

  • Less predictable longevity for the solution under development
  • Difficulty supporting a custom solution that doesn’t have wide industry adoption
  • The risk that developer(s) go in another direction and stop developing your product
  • Lack of 3rd party security testing and assessments may put your solution at risk of hacking or compromise or logic flaws

Source: Techopedia

Additional Reading: Using COTS Software To Model Development And Logistics

Related Terms: Closed Source Software, Open Source Software, Software Development Life Cycle (SDLC), Software End-of-Life (EOL) and End-of-Support (EOS)

What does this mean for an SMB?

SMBs should strongly consider the use of COTS software over building their own. Technical debt accumulates with custom built software over time.  People and developers move on to other projects and customers.  A COTS product will be supported by the vendor in the long run and you will always enjoy an upgrade path, patches, and support which is not always true of home grown or built applications.

To learn more about COTS, watch this short 3 minute video:

Are you doing enough to protect your business?

Sign up with CyberHoot today and sleep better knowing your

employees are cyber trained and on guard!


Sign Up Today!

Latest Blogs

Stay sharp with the latest security insights

Discover and share the latest cybersecurity trends, tips and best practices – alongside new threats to watch out for.

Cybercriminals Are Exploiting DocuSign with Customizable Phishing Templates
10th March 2026 | Blog

Cybercriminals Are Exploiting DocuSign with Customizable Phishing Templates

DocuSign has become one of the most trusted tools in modern business. Contracts, HR paperwork, NDAs, vendor...

Read more
PromptSpy: The Android Malware That Hired an AI Assistant
3rd March 2026 | Blog

PromptSpy: The Android Malware That Hired an AI Assistant

And yes, Google's Gemini AI had no idea it was working for the bad guys. Malware has always followed a script....

Read more
Ransomware Entry Points are Changing. Here Is What to Do About It?
24th February 2026 | Blog

Ransomware Entry Points are Changing. Here Is What to Do About It?

Ransomware groups are not breaking in organizations the same way they did five years ago. The entry methods have...

Read more
Get Started All Posts