Software Integrity

 

Webinar: Do you know what’s in your software?

software composition analysis webinar: Do you know what's in your software?
Much of today’s software is created using third-party code, and why not? After all, it’s quicker and more cost effective than building it from scratch. Using third-party software, however, comes with its own challenges. The recent State of Software Composition Analysis 2017 report explores these challenges. The report is based on the analysis of 128,782 software applications uploaded and tested through the Synopsys Software Composition Analysis tool (Protecode SC) cloud service from January 1 through December 31, 2016.

Software composition analysis webinar details

Join us on July 12, 2017 at 12:00pm EDT. Robert Vamosi, CISSP and Synopsys Security Strategist, will explore some of the key discoveries identified in the report and what these discoveries mean for the future of software security and quality.

In this webinar, we will not only share highlights from the report, we will also explore:

  • The use of trusted repositories for open source software, preferably from the source.
  • The use of software composition analysis (SCA) to monitor the ongoing state of software decay.
  • The need to update third-party software libraries as appropriate throughout the lifecycle.

Why is software composition analysis so important?

Organizations need to determine the relative risk of integrating free and open source software (FOSS) and third-party components as well as the overall security risk of the final software application. Additionally, if the organization must demonstrate OWASP compliance, specifically A9-Using Components with Known Vulnerabilities, this report’s findings will shed some light on known problem areas.

Register for the webinar