Topic: application security

A guide to DevSecOps tools

Aqua Security enables enterprises to secure their container and cloud-native applications from development to production, accelerating application deployment and bridging the gap between DevOps and IT security. The Aqua Container Security Platform protects applications running on-premises or in the cloud, across a broad range of platform technologies, orchestrators and cloud providers. Aqua secures the entire … continue reading

How these companies can help make your applications more secure

Dror Davidoff, co-founder and CEO of Aqua Security Aqua Security enables enterprises to secure their container-based and cloud-native applications from development to production, accelerating container adoption and bridging the gap between DevOps and IT security. Images serve as a container’s foundation, and developers can easily pull them from a centralized registry to run containers in … continue reading

Application security needs to shift left

As teams are pressured to release software more rapidly, more and more aspects of software development are being forced to “shift left,” moving up earlier in the development lifecycle. Because of the speed in which code is updated and delivered, security can no longer be thought of as an afterthought, said Rani Osnat, VP of … continue reading

SD Times news digest: WhiteSource’s software composition analysis, MapR’s AI training program, and MariaDB TX 3.0

WhiteSource has announced the launch of its software composition analysis tool, Effective Usage Analysis. The solution provides details on how software components are being used and highlights their impact on the application’s security. According to WhiteSource, the tool will reduce open-source vulnerability alerts by 70 percent.   “Our Effective Usage Analysis technology allows security and … continue reading

Report: Developers aren’t to blame for security issues

The idea that developers don’t care about application security is a myth. A recently released report found that not only do developers take application security seriously, they take the time to find and fix vulnerabilities in their applications. “Developers want to create great code, and to them that also means code that won’t get their … continue reading

Companies to watch in 2018

The world of software development involves so much more than writing code these days. Developers need to understand artificial intelligence, the cloud, new methodologies, and the expanding infrastructure required for the Internet of Things. Here are some companies our editors are watching to lead the way. tCell WHAT THEY DO: Application security WHY WE’RE WATCHING: … continue reading

Building application security in from start to finish

Building end-to-end security into the software development process from the requirements phase through code delivery to production, is easier said than done. Often companies only run a few security tests and activities. That’s no longer good enough. In today’s environment it’s necessary to use multiple techniques to scour the entire software development lifecycle (SDLC) from … continue reading

Code Dx Version 2.6 Supports NIST 800-53 Compliance and Application Security Testing for Mobile Apps through NowSecure

 Code Dx, Inc., provider of an award-winning application security solution that automates and accelerates the discovery, prioritization, and management of software vulnerabilities, today announced version 2.6 of its flagship Application Software Vulnerability Correlation and Management solution, Code Dx Enterprise. It now provides expanded vulnerability mapping onto compliance regulations, integration with mobile application security testing tools … continue reading

NVIDIA Tesla V100, Microsoft’s HoloLens, and Movidius Neural Computer Stick — SD Times news digest: July 24, 2017

NVIDIA gave artificial intelligence researchers a big surprise over the weekend when it chose to unveil the NVIDIA Tesla V100 at the computer vision event, CVPR, in Honolulu. Jensen Huang, CEO of NVIDIA, presented the new solution to 15 attending research institutions in the hopes they will create great AI solutions. The NVIDIA Tesla V100 … continue reading

WhiteHat Security: Improving application security with DevSecOps

Does the DevSecOps approach make a difference when it comes to improving application security? According to this year’s 12th annual WhiteHat Security “Application Security Statistics Report,” it certainly does. This year’s WhiteHat report includes a case study that details a large health organization’s successful implementation of a DevSecOps approach.  According to the study, critical vulnerabilities … continue reading

OWASP adds unprotected APIs, insufficient attack protection to Top Ten 2017 release

The Open Web Application Security Project (OWASP) released its Top 10 2017 project for public comment. This is the 14th year OWASP is raising awareness of security risks with its list, and it contains two major vulnerability updates, example attack scenarios, and a list of free and open resources for security-conscious developers. When Jeff Williams, OWASP … continue reading

Report: 111 billion lines of code will have to be secured this year

As new pieces of software are being written every day, the threat of malicious hacking continues to grow. According to a new report, there will be about 111 billion lines of new software code created this year, and with them will come billions of software vulnerabilities. “Applications have become inviting targets for malicious actors, but … continue reading

DMCA.com Protection Status