 |
|
How source code analysis improves application security
sponsored by Ounce Labs, an IBM Company
|
|
Many software security flaws can be discovered and resolved quickly through source code analysis. In this Podcast, Dan Cornell, principal at Denim Group, explains the benefits of source code analysis and source code scanning tools.
This Podcast will discuss:
- What can be found during source code analysis
- When to conduct source code analysis
- The benefits of static vs. dynamic analysis
- How can source code analysis tools help
- How to use the results to improve an application's security
|
|
|
|
Available Resources from Ounce Labs, an IBM Company
|
|
|
|
Application Security Viewpoint
sponsored by Ounce Labs, an IBM Company
 |
Podcast: |
Posted: 03 Feb 2010
|
|
Premiered:
|
03 Feb 2010 |
|
Summary: |
Application security is the aspect of understanding how applications are built and how someone could gain an advantage by looking at the application’s flaws. In this podcast, dive into the nature of applications for details on their security and how we interact with them.
|
|
|
|
|
|
|
Securing the Smarter Planet
sponsored by Ounce Labs, an IBM Company
|
Podcast: |
Posted: 26 Jan 2010
|
|
Premiered:
|
26 Jan 2010 |
|
Summary: |
Our planet is getting smarter and more efficient, which increases our reliance on technology. Historically, new technologies introduce new security risks. In this podcast, discover the role security must play in this new business paradigm and 2 concrete examples of when security is executed well and executed poorly.
|
|
|
|
|
|
|
Securing the Smart Grid
sponsored by Ounce Labs, an IBM Company
|
Podcast: |
Posted: 26 Jan 2010
|
|
Premiered:
|
26 Jan 2010 |
|
Summary: |
What exactly is the Smart Grid? In this podcast, get a concrete definition of the Smart Grid and learn how it overcomes the limitations of the current grid. Find out the role security play’s in enabling a successful implementation and learn where to look for standards.
|
|
|
|
|
|
|
Software Reliability: Building Security In
sponsored by Ounce Labs, an IBM Company
 |
Video: |
Posted: 19 Nov 2009
|
|
Premiered:
|
19 Nov 2009 |
|
Summary: |
Fixing software security vulnerabilities during development is expensive, difficult and time-consuming. But fixing them after deployment is far more expensive and counterproductive. In this video featuring security expert Diana Kelley, learn state-of-the-art techniques for building a secure software development process.
|
|
|
|
|
|
|
Countdown: Selling security in the SDLC
sponsored by Ounce Labs, an IBM Company
|
Podcast: |
Posted: 19 Nov 2009
|
|
Premiered:
|
19 Nov 2009 |
|
Summary: |
Building security into the software development lifecycle takes more than just a plan. You need the support of both the development and security/audit organizations to make it work. This podcast, featuring Diana Kelley, presents a plan for selling the value of security to all of the constituencies who matter in your organization.
|
|
|
|
|
|
|
Avoid Security Suffering With These 3 Questions
sponsored by Ounce Labs, an IBM Company
 |
Journal Article: |
Posted: 18 Sep 2009
|
|
Published:
|
16 Jun 2009 |
|
Summary: |
Participants at industry conferences and events often ask where the right place to start implementing security is. This is similar to starting off a talk with a doctor by asking “What medicine should I take?” The answer is going to be more questions. This article presents three questions to ask yourself before starting a security implementation.
|
|
|
|
|
|
|
Weathering a Perfect Storm: The Collision of Application Vulnerabilities and Data Privacy
sponsored by Ounce Labs, an IBM Company
|
Journal Article: |
Posted: 18 Sep 2009
|
|
Published:
|
17 Sep 2009 |
|
Summary: |
Enterprises, particularly those that deal with personal or private data, are now squarely in the path of a perfect storm. The convergence of regulatory compliance, high-profile data breaches and increased sophistication of cyber-attackers has transformed data security from an interesting IT sideline to a bottom-line, corner-office priority.
|
|
|
|
|
|
|
Business Case for Data Protection: Study of CEOs and other C-level Executives
sponsored by Ounce Labs, an IBM Company
|
Analyst Report: |
Posted: 18 Sep 2009
|
|
Published:
|
15 Jul 2009 |
|
Summary: |
This study looks at what senior executives think about the value of corporate data protection efforts within their organizations. It is important for those individuals charged with managing a data protection program to understand how key decision makers in organizations perceive the importance of safeguarding sensitive and confidential information.
|
|
|
|
|
Software Quality Research Library