Ounce in the News

Ounce Labs weighs into rogue code

January 21, 2008 it-director.com

Summary
As software development is the most complex aspects of IT, there is ample opportunity for source code security vulnerabilities to exist in the millions of lines of code churned out everyday. Development teams writing code that leads to buffer overflows and SQL injection attacks must give development managers a fretful time. Web application vulnerabilities that invite industrial espionage are more alive nowadays than they have ever been. In fact, much time and effort from the security agencies is tied up in dealing with this issue. Ounce Labs, the world leader in software risk analysis, was founded in 2002 by technicians fully aware of the security problem that rogue code could present. Its chief product, Ounce 5, released in June 2007, is embedded into the development methodology so that the quality of the code can be scanned at all stages in the development lifecycle. Development managers can show customers of outsourced development contracts using the Ounce Labs report as a key indicator of secure programming practice.

Read the full article at it-director.

Learn more about source code security.