'Active defense' is irresponsible | Software Integrity
A look at the idea of “Active Defense”, which basically boils down to attacking the people who (may have) attacked you. Is it irresponsible?
Add Security to Your SDLC With This Handy Checklist | Synopsys
This checklist will guide you throughout the development journey to assure that you’re integrating security into each of the seven SDLC artifacts.
Achieving Open Source Security in Container Environments | Synopsys
How do you achieve open source security in containers? Companies need to have an understanding of the components and dependencies in their container images.
Adding Security to your Agile Development Process | Synopsys
An examination of the security steps that should be added to your Agile development process and determining the best way to add them.
Adobe Flash Flaw Compromises 'Kid-Friendly' Tablet | Synopsys
A newly disclosed software flaw allows remote hackers to follow user activity, activate in-built microphone, and take pictures using the device's camera.
How Does Agile Overcome Common Software Security Challenges? | Synopsys
Utilizing an Agile software development life cycle can optimize your practices to overcome common software security challenges. Learn how.
What’s the difference between Agile, CI/CD, and DevOps? | Synopsys
We've been seeing a lot of instances recently where Agile, CI/CD, and DevOps are used interchangeably. The truth is that they're actually rather different.
IAST defined, plus the advantages of IAST for business-critical software
As an acronym, IAST is awkward to pronounce or to guess what it stands for. But as a testing tool, IAST is remarkably effective at rooting out potentially catastrophic bugs in web-based ...
Agile Development for Application Security Managers | Synopsys
Let's analyze agile development from the standpoint of application security, and look at ways to implement security into the Agile development methodology.
Balancing Agility and Open Source Security for DevOps | Synopsys
Open source insight this week, lots of DevOps news including why automation is critical for securing code, as well as balancing agility with security needs.