AAMI TIR57 recognized by the FDA as a foundational cybersecurity standard for...
The AAMI TIR57 "Principles for medical device security - Risk management" standard was published by AAMI this summer.
3 Ways Abuse Cases Can Drive Security Requirements | Synopsys
https://www.synopsys.com/blogs/software-security/abuse-cases-can-drive-security-requirements/
Learn how to use abuse cases effectively to improve the security of an application's business features.
Abuse cases: How to think like a hacker | Synopsys
https://www.synopsys.com/blogs/software-security/abuse-cases/
There are no protections in place to help developers anticipate what a malicious user might do with a feature. There should be.
Achieving Open Source Security in Container Environments | Synopsys
How do you achieve open source security in containers? Companies need to have an understanding of the components and dependencies in their container images.
Learn how to accelerate your agile security strategy | Synopsys
https://www.synopsys.com/blogs/software-security/accelerate-your-agile-security-testing-strategy/
Find the most aerodynamic way to build security into agile development with a variety of tools that effectively meet your firm's challenges.
Adding Security to your Agile Development Process | Synopsys
https://www.synopsys.com/blogs/software-security/adding-security-steps-to-your-agile-process/
An examination of the security steps that should be added to your Agile development process and determining the best way to add them.
Add Security to Your SDLC With This Handy Checklist | Synopsys
https://www.synopsys.com/blogs/software-security/add-security-sdlc-checklist/
This checklist will guide you throughout the development journey to assure that you’re integrating security into each of the seven SDLC artifacts.
Adobe Flash flaw compromises 'kid-friendly' tablet | Synopsys
https://www.synopsys.com/blogs/software-security/adobe-flash-flaw-compromises-kid-friendly-tablet/
A newly disclosed Adobe Flash security flaw allows remote hackers to follow a LeapFrog user's activity, activate the built-in microphone, and take pictures using the device's camera.
IAST defined, plus the advantages of IAST for business-critical software
https://www.synopsys.com/blogs/software-security/advantages-iast-business-critical-software/
As an acronym, IAST is awkward to pronounce or to guess what it stands for. But as a testing tool, IAST is remarkably effective at rooting out potentially catastrophic bugs in web-based ...
What’s the difference between agile, CI/CD, and DevOps? | Synopsys
https://www.synopsys.com/blogs/software-security/agile-cicd-devops-glossary/
We've been seeing a lot of instances recently where agile, CI/CD, and DevOps are used interchangeably. The truth is that they're actually rather different.