Software Integrity Blog

Author Archive

Synopsys Editorial Team

synedt


Posts by Synopsys Editorial Team:

 

Synopsys Software Integrity Group Security Week 2019

During Cybersecurity Awareness Month, the Software Integrity Group hosted Security Week 2019, with presentations, guest speakers, and a capture-the-flag.

Continue Reading...

Posted in News & Announcements, Security Training & Awareness | Comments Off on Synopsys Software Integrity Group Security Week 2019

 

[Webinars] How to risk rank vulnerabilities, insights from BSIMM10

Learn about five ways to approach risk ranking in vulnerability management, and hear key insights into real-life software security programs from BSIMM10.

Continue Reading...

Posted in Open Source Security, Software Security Program, Webinars | Comments Off on [Webinars] How to risk rank vulnerabilities, insights from BSIMM10

 

Top open source licenses and legal risk for developers

Learn about the top open source licenses used by developers, including the 20 most popular open source licenses, and their legal risk categories.

Continue Reading...

Posted in Open Source Security, Software Composition Analysis (SCA) | Comments Off on Top open source licenses and legal risk for developers

 

[Webinars] Evidence-based security, design and code quality in tech M&A

Learn how to improve software security using evidence-based standards, and why you should inspect design and code quality during technical due diligence.

Continue Reading...

Posted in Mergers & Acquisitions, Software Compliance, Quality & Standards, Webinars | Comments Off on [Webinars] Evidence-based security, design and code quality in tech M&A

 

Ask the Experts: How can software engineers support security efforts?

We’ve gathered some expert opinions about how software engineers can contribute to, improve, and even lead their organization’s software security program.

Continue Reading...

Posted in Software Security Program | Comments Off on Ask the Experts: How can software engineers support security efforts?

 

[Webinars] NVD data feed alternatives and software security metrics

Learn about a better, faster alternative to NVD vulnerability data feeds and how to measure software security effectiveness and use metrics to drive change.

Continue Reading...

Posted in Open Source Security, Software Security Program, Webinars | Comments Off on [Webinars] NVD data feed alternatives and software security metrics

 

Software Testing Tools Checklist: Do your tools empower your developers?

Developers need software testing tools that are accurate and easy to integrate. Evaluate your tools with this 7-step Software Testing Tools Checklist.

Continue Reading...

Posted in Developer Enablement | Comments Off on Software Testing Tools Checklist: Do your tools empower your developers?

 

[Webinars] Automotive fuzz testing and financial services AppSec

Learn how agent instrumentation improves fuzz testing of automotive IVI and telematics systems, and about financial services application security.

Continue Reading...

Posted in Financial Cyber Security, Fuzz Testing, Webinars | Comments Off on [Webinars] Automotive fuzz testing and financial services AppSec

 

[Webinar] Black Duck Legal Certification Course

Learn about software due diligence and how to answer your clients’ open source questions in our Black Duck Legal Certification Course.

Continue Reading...

Posted in Mergers & Acquisitions, Open Source Security, Webinars | Comments Off on [Webinar] Black Duck Legal Certification Course

 

Coverity release ties in well to the latest MITRE CWE Top 25

MITRE’s 2019 CWE Top 25 list contains many code quality issues that can result in security vulnerabilities. Static analysis can help you mitigate them.

Continue Reading...

Posted in Software Compliance, Quality & Standards, Static Analysis (SAST) | Comments Off on Coverity release ties in well to the latest MITRE CWE Top 25