The Synopsys application security validation program provides rigorous software security assessments, including Coverity® static application security testing (SAST), Black Duck® software composition analysis (SCA), penetration testing, and code reviews. Coverity identifies critical software quality defects and security vulnerabilities to ensure code that is secure, higher quality, and compliant with standards. Black Duck SCA provides a comprehensive solution for managing security, quality, and license compliance risk that comes from the use of open source and third-party code in applications and containers. Synopsys managed penetration testing systematically finds and eliminates business-critical vulnerabilities in running web applications and web services.
“The net result is a win-win for both FinTech providers and their financial services customers,” said Nir Valtman. “FinTech app providers get third-party validation from an industry-leading application security company, and their customers can rely on the applications with confidence.”
The results: Security validation for FinTechs and their customers
“We have more than 20 apps today in the store, all of which went through the SIG vetting process before going live on FusionStore,” Nir Valtman said. “With the easily understood reports that the Synopsys security validation program provides, it’s a relatively simple process for me to make a ‘go/no-go’ decision and provide any needed feedback to the FinTechs.”