Software Integrity

Search Results for 'secure sdlc'

 

Creating a secure SDLC, solving open source’s biggest problem, government unprepared for cyber attacks

The cyber security and open source security news that made headlines this week! Synopsys: Changing our culture to follow a secure software development life cycle Case Study: Like members of many other development teams, Synopsys’ own engineers initially resisted anything that might slow developer productivity. However, their reluctance to adopt security practices during development was […]

Continue Reading...

Posted in Open Source Security | Comments Off on Creating a secure SDLC, solving open source’s biggest problem, government unprepared for cyber attacks

 

Secure SDLC 101

Most organizations have a well-oiled machine with the sole purpose to create, release, and maintain functional software. However, the increasing concerns and business risks associated with insecure software have brought increased attention to the need to integrate security into the development process. Implementing a proper secure software development life cycle (SSDLC) is important now more […]

Continue Reading...

Posted in Maturity Model (BSIMM) | Comments Off on Secure SDLC 101

 

Webinar: Static analysis helps DevOps teams maintain velocity securely

In our on-demand webinar with Meera Rao (Synopsys), you’ll learn how to integrate SAST into DevOps using automation to find issues early in the SDLC and support DevOps velocity.

Continue Reading...

Posted in Agile, CI/CD & DevOps, Static Analysis (SAST), Webinars | Comments Off on Webinar: Static analysis helps DevOps teams maintain velocity securely

 

Enable DevSecOps with Coverity: deliver secure code, faster

The timeless demand to reduce time to market has put DevOps in a position to solidify itself as a defining characteristic of modern SDLCs. While the need to accelerate software development is as old as software development is, the need to produce secure software is currently gaining traction in light of recent software security blunders. […]

Continue Reading...

Posted in Agile, CI/CD & DevOps | Comments Off on Enable DevSecOps with Coverity: deliver secure code, faster

 

Webinar: Ensure your software is secure without clogging up the CI/CD pipeline

While software grows more complex and the pace of development accelerates, the stakes for building secure software have never been higher. If you’re like most teams embracing a DevOps culture, you’re focused on breaking down silos, streamlining workflows, and cranking out functional software at a nearly continuous clip. Amid all these fundamental changes, how do […]

Continue Reading...

Posted in Agile, CI/CD & DevOps, Webinars | Comments Off on Webinar: Ensure your software is secure without clogging up the CI/CD pipeline

 

The best way to secure applications in 2018? Learn from 2017

2017—a turbulent year in application security From breaches making headlines to exciting new technologies, 2017 was abuzz with conversation around securing applications and the implications of access to personal data. We saw what can happen when sensitive data is not properly secured, providing a sharp reminder of why application security is so important. Looking ahead, […]

Continue Reading...

Posted in Data Breach | Comments Off on The best way to secure applications in 2018? Learn from 2017

 

A journey through the secure software development life cycle phases

  Most organizations follow common development processes when creating software. Unfortunately, these processes offer little support to construct secure software as they typically identify security defects in the verification (i.e., testing) phase. Fixing defects that late in the software development life cycle (SDLC) is often quite expensive. A better practice is to integrate security activities […]

Continue Reading...

Posted in Infographic | Comments Off on A journey through the secure software development life cycle phases

 

Learn how to implement security and quality into your firm’s SDLC

A major factor for companies, and even industries, failing to develop robust security programs is the perceived start-up cost to carry it out. It can be daunting to take large organizations as inspiration when considering how to implement security measures into the software development life cycle (SDLC). Many of these mature security programs have security […]

Continue Reading...

Posted in Uncategorized | Comments Off on Learn how to implement security and quality into your firm’s SDLC

 

Why secure code reviews matter (and actually save time!)

Modern websites and applications are feature-rich. They provide the user with an intuitive flow through business logic and data. Application developers write these features, rely on their operation, and may even re-use them in their code. Due to rapid, feature-driven development and code sharing, when a vulnerability is introduced in code (and goes undetected) it […]

Continue Reading...

Posted in Security Standards and Compliance, Software Architecture and Design | Comments Off on Why secure code reviews matter (and actually save time!)

 

How much do bugs cost to fix during each phase of the SDLC?

A well-defined software development life cycle (SDLC) is essential to develop more reliable, bug-free software. At Synopsys, we often make the claim that it’s important to fix bugs early in the SDLC to save time and money. But how much of a cost difference does it really make to fix bugs during various SDLC phases? […]

Continue Reading...

Posted in Software Architecture and Design | Comments Off on How much do bugs cost to fix during each phase of the SDLC?