Always a fan of Veracode I thought I would share this article on their automated testing process.

From Computer Weekly UK:

Testing software applications to minimise the risk of security vulnerabilities and compliance failings is a time-consuming and costly process, albeit an essential one. Security testing company Veracode has developed a automated tool that promises to slash the time taken to complete this process.

It all began in 2002 when a specialist security consultancy @Stake created a smart piece of software to analyse application code for errors. The product, SmartRisk Analyzer, was an application security analysis tool, which automated identification of security vulnerabilities by checking the binary code of software applications. It was designed to help consultants work alongside developers and quality-assurance teams to find and fix security flaws early in the development cycle, minimising risk and reducing the need for incident response work.

Then, in 2004, Symantec acquired the technology when it bought @Stake. The technology underlying SmartRisk Analyzer was extended, and eventually brought to market by Symantec spin-off Veracode.

Which is more than I can say for LC5 which met with an unceremonious end.

Article Link

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.