Software Integrity

Archive for the 'Software Quality' Category

 

KRACK: Examining the WPA2 protocol flaw and what it means for your business

WPA2? The weekend of Friday the 13th took a frightening turn—even for those of us who aren’t superstitious—when detrimental weaknesses were discovered in Wi-Fi Protected Access II (WPA2), the protocol responsible for securing Wi-Fi networks. WPA2 was first made available back in 2004 and has been required on all Wi-Fi branded devices since March 2006. […]

Continue Reading...

Posted in Application Security, Data Breach, Software Quality, Vulnerability Assessment | No Comments »

 

How to implement security measures without negatively affecting software quality

Over the past decade, most organizations have established a well-oiled process for software development and maintenance. We refer to this as the software development life cycle (SDLC). However, advancing security threats relating to insecure software have brought the focus to security implementation within the SDLC without hampering quality. Let’s examine a few strategies to implement security […]

Continue Reading...

Posted in Application Security, Software Development Life Cycle (SDLC), Software Quality, Software Security Testing | Comments Off on How to implement security measures without negatively affecting software quality

 

Checklist: Kick off your software integrity program with a bang

We are coming up on fall here in the States, and for most of us, that means two big types of kickoffs are happening: new business initiatives and football. Budgets tend to land around the same time as football season, so if you want to enjoy your Sunday kickoffs, follow this list of four impactful […]

Continue Reading...

Posted in Application Security, Software Quality, Software Security Program Development | Comments Off on Checklist: Kick off your software integrity program with a bang

 

A journey through the secure software development life cycle phases

Most organizations follow common development processes when creating software. Unfortunately, these processes offer little support to construct secure software as they typically identify security defects in the verification (i.e., testing) phase. Fixing defects that late in the software development life cycle (SDLC) is often quite expensive. A better practice is to integrate security activities across […]

Continue Reading...

Posted in Application Security, Infographic, Software Development Life Cycle (SDLC), Software Quality | Comments Off on A journey through the secure software development life cycle phases

 

Do security and quality really belong in the same conversation?

In software development shops across the world there is a strong emphasis on quality over security. But, these two key practices in the development process are not mutually exclusive. They are, in fact, two sides of the same coin joined together by their similar processes, artifacts, and goals. These include testing the software for defects, […]

Continue Reading...

Posted in Application Security, Software Quality | Comments Off on Do security and quality really belong in the same conversation?

 

Climbing Mount MISRA: Which route is right for you?

The director of software development comes into your office in a panic. “We’ve got to do MISRA… stat! Legal insists on it; our customers are demanding it.” Your heart sinks. If you’ve ever been to Yosemite, you’ll know there are two ways to the summit of Half Dome: one way has fairly gradual—or at least […]

Continue Reading...

Posted in Application Security, Security Standards and Compliance, Software Quality | Comments Off on Climbing Mount MISRA: Which route is right for you?

 

Software integrity is a journey, not a destination

As software evolves, there is an underlying focus on a goal (or set of goals). From an organizational perspective, software security is an operation that protects critical business practices. Thus, it should become a habitual element of the development process—in the same way that quality implications are considered to meet specific goals. This proactive point of […]

Continue Reading...

Posted in Application Security, Software Quality | Comments Off on Software integrity is a journey, not a destination

 

Introducing the Synopsys Software Integrity Community

We’re pleased to announce the launch of the Synopsys Software Integrity Community. At Synopsys, we’ve put in a lot of time and energy to ensure our users have easy ways to effectively utilize their developer tools and reach their full potential. We also understand the impact the software they’re creating has on the world around […]

Continue Reading...

Posted in Application Security, Software Quality, Software Security Testing | Comments Off on Introducing the Synopsys Software Integrity Community

 

The journey has just begun: Software quality meets software security

  Born out of the acquisition of various security and quality-focused organizations, Synopsys Software Integrity Group’s journey is just getting started. Founded in 1986, Synopsys rose to prominence with their advances in the Electronic Design Automation industry. As you can see from the graphic above, Synopsys made their move into the security and quality space […]

Continue Reading...

Posted in Application Security, Infographic, Software Quality, Software Security Testing | Comments Off on The journey has just begun: Software quality meets software security

 

Is your software MISRA clean?

“Scalpel.” “Scalpel.” “Let’s make the incision … There we go …  Spreader.” “Spreader.” “Good. A little wider. Like that. Metzenbaum.” “Metzenbaum.” “There we are. We’re at the DIVIDE_BY_ZERO site. As you can see, it starts here, and follows this path here. We’ll remove it … gently … nice, a clean extraction. Now, let’s graft in […]

Continue Reading...

Posted in Application Security, Secure Coding Guidelines, Security Standards and Compliance, Software Quality, Vulnerability Assessment | Comments Off on Is your software MISRA clean?