Secure Decisions, a leading provider of assessment tools to enhance software security, is partnering with the
The SWAMP, implemented by a group of four research institutions and housed in the
"We need better tools and easier access to these tools in order to improve software security," says
The partnership with Secure Decisions, a division of
"Adding Code Dx to the SWAMP infrastructure improves the remediation process by making the testing results much easier to consume for today's software developers and security professionals," says
The stakes are very high to improve software integrity for government and industry. Most of the major cases of breached security involve attacks on compromised software applications rather than the traditional attack vector on corporate networks. For example, a major vulnerability in OpenSSL known as "Heartbleed" potentially allows attackers to steal passwords and other private information from supposedly secure website servers. This vulnerability has necessitated a massive security response across the global IT community in recent months.
As more applications are being deployed via the Internet and delivered through wireless networks, the software applications themselves are more vulnerable to attack than ever, requiring the industry to take greater interest in ensuring the application code is resilient.
Livny says one important contribution of the SWAMP will be to make all the existing tools better through an open testing environment that facilitate controlled sharing. As the SWAMP adds new assessment tools to its repository, Secure Decisions will be able to ingest the disparate outputs from these tools and make them functional within Code Dx.
"We are constantly adding support for more open source software assurance tools and programming languages in Code Dx," says Ken Prole, Principal Investigator at Secure Decisions. "It's essential that we continue to expand the depth and breadth of Code Dx capabilities so the SWAMP and its technologies are always on the leading edge."
Organizations that already have in-house software security tools and procedures can add the SWAMP resource as a supplement. It will eliminate the need for companies to invest in every relevant assessment tool because SWAMP's mission is to stay on top of the field and add new tools, Livny says.
To learn more about using SWAMP resources, contact Program Manager
Read the full story at http://www.prweb.com/releases/2014/07/prweb12014632.htm
Most Popular Stories
- Fantasy Football Gambling Industry Facing Increased Legal Scrutiny
- As States Legalize Pot, Will Traffic Deaths Rise?
- NATO Plans High-Readiness Force to Counter Russia
- 'Guardians of the Galaxy' Conquers the North American Box Office with $16.3M
- Obama Promoting Economic Gains As Elections Near
- Challenge to Texas Voter ID Begins
- Celebrities Vow Revenge on Hackers Who Posted Photos
- Construction Spending Staged Strong Rebound in July
- Netflix Unveils New Way to Share Recommendations