Cloud native EDA tools & pre-optimized hardware platforms
Synopsys is continuously improving processes and activities for developing and implementing secure software and hardware. The Synopsys Product Incident Response Team (PSIRT) is focused on handling security incidents for Synopsys products.
Synopsys PSIRT's primary objective is to minimize the risks associated with security incidents in a timely, secure, and responsible way. Synopsys PSIRT coordinates the response and disclosure of security issues related to Synopsys products.
Synopsys regularly shares product updates with its customers through SolvNet Plus. In the event of any confirmed security issues, these are disclosed to affected customers using the same platform.
Synopsys is committed to collaborating with external parties in the event of security incidents and following industry best practices in handling security incidents. The Synopsys process to handle security incidents is based on well-known industry standards, such as NIST-SP-800-61, ISO 29147, and ISO 30111.
Synopsys PSIRT coordinates with the necessary internal teams to investigate the reports, verify the findings and devise possible mitigation or remediation strategies. Throughout the life cycle of a security incident, the PSIRT keeps close contact with the internal and external stakeholders as required, informing of significant updates as appropriate.
To report security incidents or potential vulnerabilities to Synopsys products, please refer to “Report a Security Issue” page.