Software Integrity Blog

 

[Webinars] DevSecOps, JavaScript security, and automotive security

Learn how to reduce your anxiety with DevSecOps, review JavaScript security in modern applications, and improve automotive cyber security after production.

Register for our DevSecOps webinar

Defuse Your Release Anxiety by Fusing DevOps and Security

In these times of DevSecOps, many companies claim that they’re “doing it.” But a false sense of security is worse than no security at all.

In this DevSecOps webinar, Synopsys and XebiaLabs will explore how to embed multiple security perspectives on software vulnerability detection and prevention into your automated development release pipelines. The goal: To prevent your organization from being the next case study on how failure to cover an essential perspective resulted in an embarrassing data breach.

What: Defuse Your Release Anxiety by Fusing DevOps and Security

Who: Vincent Lussenburg, director of DevOps strategy, XebiaLabs; Tomas Gonzalez, alliance technical engineer, Synopsys

Watch now


Register for our JavaScript security webinar

Reviewing Modern JavaScript Applications

Many penetration testers approach modern JavaScript applications from an “outside-in” perspective. But this approach often misses security issues in plain sight. In this JavaScript security webinar, we’ll demystify common JavaScript issues that should be better understood/identified during security reviews. We’ll discuss how to review applications in a code-centric manner by using freely available tools to help start identifying security issues through processes such as linting and dependency auditing.

What: Reviewing Modern JavaScript Applications

Who: Lewis Ardern, senior security consultant, Synopsys

Watch now


Register for our automotive cyber security webinar

Securing Vehicles After Production: Vulnerability Management and Secure Updates

As the automotive software development life cycle puts greater focus on connected car cyber security, we’ll see safer, more secure cars on the roads. OEMs and suppliers use static code analysis, software composition analysis, and fuzz testing to identify and remediate vulnerabilities in automotive components during development and testing. But even with the right tools and processes, it’s impossible to eliminate every software vulnerability in a vehicle’s 100 million lines of code before releasing it into the field.

Therefore, it’s important to continue finding and fixing bugs in vehicles after production. During operations and maintenance, detecting and managing new vulnerabilities in automotive components is a high priority. Patching these vulnerabilities means performing secure over-the-air (OTA) updates—and ensuring those updates don’t introduce new vulnerabilities.

This automotive cyber security webinar presents the current challenges and suggests solutions to securing vehicles during the operations phase.

What: Securing Vehicles After Production: Vulnerability Management and Secure Updates

Who: Dennis Kengo Oka, senior solution architect, Synopsys

Watch now

 

More by this author