Software Integrity Blog

Author Archive

Synopsys Editorial Team

synedt


Posts by Synopsys Editorial Team:

 

[Webinars] Evidence-based security, design and code quality in tech M&A

Learn how to improve software security using evidence-based standards, and why you should inspect design and code quality during technical due diligence.

Continue Reading...

Posted in Mergers & Acquisitions, Security Standards and Compliance, Webinars | Comments Off on [Webinars] Evidence-based security, design and code quality in tech M&A

 

Ask the Experts: How can software engineers support security efforts?

We’ve gathered some expert opinions about how software engineers can contribute to, improve, and even lead their organization’s software security program.

Continue Reading...

Posted in Featured, Maturity Model (BSIMM) | Comments Off on Ask the Experts: How can software engineers support security efforts?

 

[Webinars] NVD data feed alternatives and software security metrics

Learn about a better, faster alternative to NVD vulnerability data feeds and how to measure software security effectiveness and use metrics to drive change.

Continue Reading...

Posted in Maturity Model (BSIMM), Open Source Security, Webinars | Comments Off on [Webinars] NVD data feed alternatives and software security metrics

 

Software Testing Tools Checklist: Do your tools empower your developers?

Developers need software testing tools that are accurate and easy to integrate. Evaluate your tools with this 7-step Software Testing Tools Checklist.

Continue Reading...

Posted in Developer Enablement | Comments Off on Software Testing Tools Checklist: Do your tools empower your developers?

 

[Webinars] Automotive fuzz testing and financial services AppSec

Learn how agent instrumentation improves fuzz testing of automotive IVI and telematics systems, and about financial services application security.

Continue Reading...

Posted in Financial Services Security, Fuzz Testing, Webinars | Comments Off on [Webinars] Automotive fuzz testing and financial services AppSec

 

[Webinar] Black Duck Legal Certification Course

Learn about software due diligence and how to answer your clients’ open source questions in our Black Duck Legal Certification Course.

Continue Reading...

Posted in Mergers & Acquisitions, Open Source Security, Webinars | Comments Off on [Webinar] Black Duck Legal Certification Course

 

Coverity release ties in well to the latest MITRE CWE Top 25

MITRE’s 2019 CWE Top 25 list contains many code quality issues that can result in security vulnerabilities. Static analysis can help you mitigate them.

Continue Reading...

Posted in Quality & Compliance, Security Standards and Compliance, Static Analysis (SAST) | Comments Off on Coverity release ties in well to the latest MITRE CWE Top 25

 

Synopsys consultant wins a leadership award from SC Media

We’re thrilled that Andrew van der Stock, senior principal consultant at Synopsys, has won an SC Media Reboot Leadership Award for Outstanding Educators.

Continue Reading...

Posted in News & Announcements | Comments Off on Synopsys consultant wins a leadership award from SC Media

 

Q&A: Fuzz testing, agent instrumentation, and Defensics

Do you have questions about fuzz testing? We’ve got answers, explanations, and recommendations from our last webinar on fuzzing using agent instrumentation.

Continue Reading...

Posted in Automotive Security, Fuzz Testing, Webinars | Comments Off on Q&A: Fuzz testing, agent instrumentation, and Defensics

 

BSIMM10: A decade of research on software security activities

BSIMM10 compiles a decade of research on software security activities in real-life firms into a guide for maturing your software security initiative.

Continue Reading...

Posted in Featured, Maturity Model (BSIMM), News & Announcements | Comments Off on BSIMM10: A decade of research on software security activities