Continuous testing. Automated testing. Artificial testing. Service virtualization. Test-driven development. These are among the many technologies available to organizations looking to bring their testing up to the speed of software development. Ensuring quality can no longer be the drag on software deployment, if businesses want to stay competitive and be able to take advantage of … continue reading
Building end-to-end security into the software development process from the requirements phase through code delivery to production, is easier said than done. Often companies only run a few security tests and activities. That’s no longer good enough. In today’s environment it’s necessary to use multiple techniques to scour the entire software development lifecycle (SDLC) from … continue reading
Synopsys releases BSIMM8 Electronic design automation company Synopsys has released the latest version of their software security maturity model, BSIMM8, which includes data collected from 109 firms and describes the work of nearly 5,000 software security professionals. Findings of the survey show a clear trend of improvement, with companies seeing an average score increase between … continue reading
There are potential zero day exploits in the open source protocols and common file formats across six specific industries, according to Synopsys’ State of Fuzzing 2017 report. This includes the automotive, finance, industrial control systems, Internet of Things (IoT), government, and medical fields. The report stems from more than 4.8 billion fuzz tests conducted by Synopsys’ customers … continue reading
Microsoft is continuing to commit resources to artificial intelligence research with the announcement of a new organization. Microsoft Research AI is a research and incubation hub for tackling AI’s most difficult challenges, and reuniting the fields of machine learning, perception and natural language processing. “As AI moves from research to product, we are maintaining our … continue reading
This year, the Open Web Application Security Project (OWASP) released its Top 10 2017 project for public review. There were two vulnerability updates to this year’s 14th release of OWASP, and although they were added to raise awareness on security risks in applications, one company is calling a movement for removal and replacement of one … continue reading
There’s a new ransomware attack that has affected several organizations globally, and although it’s slow-moving, security experts are urging companies to keep their antivirus programs up-to-date, as well as their software. The ransomware — dubbed WannaCry (WanaCrypt0r 2.0/WCry) — has hit Britain’s National Health Service, some of Spain’s big companies, and has spread across Russia, … continue reading
Developers will never be responsible for all of security in an organization, but if they keep up with best practices, resources, and find new ways to secure and deliver good code, they could play a key role in developing resilient software. Today, most firms have a software security group (or SSG) or a product security … continue reading
Slack has introduced a much-sought-after feature today called Threads, which lets users reply to messages, organize discussions and manage their conversations. According to Paul Rosania, a member of the core product team at Slack, the company was trying to implement a feature that would group conversations in a channel to make it clear which message … continue reading
Companies today are like teenagers learning how to drive; there’s a lot of stop and go, and a strong desire to go fast. While it’s necessary for organizations to find a solution that fits their agile transformation, experts suggest there is no need to rush. Before getting the green light to go to market, teams … continue reading
DevOps is an obtainable practice for enterprises and businesses looking to rapidly build and release high-quality applications. It’s mainstream, and there’s a real reason companies are implementing their own DevOps strategy: It works. Enterprises are reaping the benefits of implementing DevOps. Companies are building in automation and Continuous Delivery solutions, they’re shifting management and responsibilities, … continue reading
Azul Systems has announced the general availability of version 16.07 of its Zing runtime for Java, which is a drop-in replacement for legacy Java Virtual Machines. According to the TIOBE Index, Java remains the most popular programming language across enterprises, and is used by companies like Google and Oracle. However, Java can still experience problems … continue reading
