Synopsys, Inc. announced it has signed a definitive agreement to acquire certain assets of Quotium, including the Quotium Seeker product and R&D team. The additional talent, technology and products will expand Synopsys’ presence in the application security market by extending the Coverity platform with interactive application security testing (IAST) functionality. Seeker complements the Coverity platform’s static analysis technology by testing and analyzing applications in run-time, providing customers with a broader solution to detect and remediate security vulnerabilities and better protect business data from application attacks. By accelerating adoption of security testing technologies into the software development lifecycle (SDLC), customers across industries such as financial, health, energy and retail can get to market faster with increased stability and certainty. This is the second announcement Synopsys has made in the past six weeks about extending further into the software security market. On April 20, Synopsys announced that it signed a definitive agreement to acquire Codenomicon.
“Synopsys’ growth strategy is built on three pillars: leadership in EDA, growth in IP, and growth in software application quality and security,” said Andreas Kuehlmann, senior vice president and general manager, Software Integrity Group, Synopsys. “The acquisition of Seeker and the Seeker R&D team can drive growth in this third pillar by addressing the web application security needs of the enterprise market. Additionally, Seeker provides our customers with an automated security testing solution that analyzes the application in run-time, complementing the Coverity platform’s static analysis testing approach. Using both products will enable customers to feel more secure while improving their time to market.”
The Quotium Seeker solution is a pioneering solution for IAST that helps businesses find high-risk security weaknesses while fostering collaboration between development and security teams. The Seeker solution exposes vulnerable code and ties it directly to business impact and exploitation scenarios, providing a clear explanation of risks. Gartner, Inc. positioned Quotium in the ‘Visionaries’ section of the Magic Quadrant for Application Security Testing based largely on the innovative IAST capabilities available in Quotium’s Seeker solution.
“We’ve seen how the Coverity platform finds security defects in the developer workflow and believe Seeker can augment that process into further stages of the agile software development lifecycle,” said Ofer Maor, co-founder and CTO of Quotium. “We’re looking forward to being part of Synopsys and better helping organizations resolve security issues across the software development lifecycle.”
The terms of the deal, which is not material to Synopsys financials, have not been disclosed. The transaction is subject to customary closing conditions.