|
June
2005 SPOTLIGHT ON: Practical Solutions for Software AssuranceGreetings from SVRM Update, a quarterly newsletter from Ounce Labs that covers the developing arena of software vulnerability risk management. This issue discusses practical approaches to software assurance efforts for your organization. If you would prefer not to receive future issues, you may unsubscribe here. |
IN THIS ISSUE:
|
Case Study #1: RightNow Technologies"I now have the quantifiable proof we are delivering more secure software." Learn how the VP of Product Development for one of the biggest on-demand CRM vendors in the world assures the security of his products through Ounce Labs' source code vulnerability analysis. RightNow incorporates measurable security requirements, consistent analysis, and assigned accountability as regular parts of a development process demonstrating unmistakable improvement. Click here for full article (PDF). |
Case Study #2: Entegrity SolutionsWith customers like Citibank, Daimler Chrysler, Hewlett-Packard, Lawrence Livermore National Labs, and United Airlines, Entegrity takes the security of its software product lines very seriously. This case study reports how Ounce Lab's technology helps the company eliminate security flaws during the development process without delaying product releases. The results include a quantifiable reduction in ongoing maintenance costs, both internally and for Entegrity customers. Click here for full article (PDF). |
Managing the Risk of Identity TheftReported security breaches in the first half of 2005 have exposed private data of nearly 50 million customers of high-profile companies such as ChoicePoint, Bank of America, LexisNexis, HSBC, Ameritrade, Time Warner, and CitiFinancial, generating attention and alarm victims, press, and legislators. This paper uses key examples to discuss causes, costs, liability, and solutions to help organizations avoid becoming the next in what will likely be a continued stream of highly-publicized and costly identity theft incidents. Click here for full article. |
News from Gartner: The Experts SpeakThe Gartner Security Summit is an annual gathering of Gartner’s most prominent experts on security and more than 1500 attendees charged with implementing security at the world’s largest organizations. This year’s conference highlighted a variety of security technologies and end-user case studies targeted at solving some of today’s most pressing security challenges. A frequent topic raised in conference sessions and on the show floor was the need for software security assurance, and how technologies such as automated source code vulnerability analysis are helping to address this need. Click here for full article. |
IN THE NEWS
Tools
to Audit Software Vulnerabilities Now
Becoming Available Government Security News features Ounce Labs CEO Jack Danahy discussing the critical need for software security assurance, and the emergence of new automated solutions to enable this process. The article outlines how new regulatory requirements and organizational reliance on trustworthy software makes software security audits imperative, and describes how technology can help. |
 Where in your organization does the responsibility for auditing software for vulnerabilities belong? * (check all that apply)  UPCOMING EVENTS
|
|
|