In these times of DevSecOps, many companies claim that they’re “doing it.” But a false sense of security is worse than no security at all.
In this DevSecOps webinar, Synopsys and XebiaLabs will explore how to embed multiple security perspectives on software vulnerability detection and prevention into your automated development release pipelines. The goal: To prevent your organization from being the next case study on how failure to cover an essential perspective resulted in an embarrassing data breach.
Who: Vincent Lussenburg, director of DevOps strategy, XebiaLabs; Tomas Gonzalez, alliance technical engineer, Synopsys
Who: Lewis Ardern, senior security consultant, Synopsys
As the automotive software development life cycle puts greater focus on connected car cyber security, we’ll see safer, more secure cars on the roads. OEMs and suppliers use static code analysis, software composition analysis, and fuzz testing to identify and remediate vulnerabilities in automotive components during development and testing. But even with the right tools and processes, it’s impossible to eliminate every software vulnerability in a vehicle’s 100 million lines of code before releasing it into the field.
Therefore, it’s important to continue finding and fixing bugs in vehicles after production. During operations and maintenance, detecting and managing new vulnerabilities in automotive components is a high priority. Patching these vulnerabilities means performing secure over-the-air (OTA) updates—and ensuring those updates don’t introduce new vulnerabilities.
This automotive cyber security webinar presents the current challenges and suggests solutions to securing vehicles during the operations phase.
Who: Dennis Kengo Oka, senior solution architect, Synopsys