Software Integrity Blog

Author Archive

Andrew van der Stock


Andrew van der Stock is a senior principal consultant at Synopsys, providing technical leadership in security architecture, threat modeling, security architecture reviews, secure coding guidelines and reviews, assurance and penetration tests, risk assessments, and developer training. He has worked in the IT industry for over 20 years and is a seasoned web application security specialist and enterprise security architect. Andrew currently leads the OWASP Top 10 2017 and Application Security Verification Standard projects.

Posts by Andrew van der Stock:


Data misuse is a first-class security concern

Facebook has extended their long-running bug bounty program to include data misuse by third-party application providers.

Continue Reading...

Posted in Data Breach Security


What’s happening with the OWASP Top 10 2017?

One of my favorite books, “The Hitchhiker’s Guide to the Galaxy,” describes itself in the introduction like this:

Continue Reading...

Posted in Software Compliance, Quality & Standards, Web Application Security