Consulting: Application Vulnerability Diagnosis

> SECRVICE > Consulting: Application Vulnerability Diagnosis

Summary
Solution

HP Fortify Software Security Center provides enterprice-wide visibility for development, quality assurance, operational application security vulnerability.

Characteristics

Perfectly supports the most development languages, mobile languages, and IDE plug-ins.
  • Adobe, ASP.NET, C/C++, C#, Classic ASP, HTML(HTML5), JAVA, JAVA Script/AJAX, JSP, PHP, PL/SQL, MS T-SQL, VB for Applications, VB Script, VB.NET, XML, Flex, Environments (Apache, J2EE, EJB, .NET, Weblogic, etc.), Android JAVA, iOS Objective-C, premium languages (COBOL, ColdFusion, Python, ABAP)
  • VS.net, Eclipse, IBM WSAD/RAD, Borland JBuilder
Applies security to a full Software Development Life Cycle (SDLC).
  • Removes all risks of applications that operate or are under development or are planned.
Supports domestic and international compliance.
  • A Guidline of Software Security Vulnerability Diagnosis by Ministry of Government Administration and Home Affairs
  • OWASP Top 10, OWASP Mobile Top 10
  • PCI, CWE, SANS, etc.
Developed by a world-best software security R&D team
  • Participated by 2,000 world-best security professionals.
  • Periodically updates secure coding rules and development language analysis functions.
  • Provides project members of OWASP Top 10, Mobile Top 10, IOT Top 10, etc. and statistical data.
  • Supports quarterly updates (updates average 10-20 vulnerability issues and 1,000 APIs).
Shows world-best mobile secure coding diagnosis performance.
  • Simultaneously supports Android JAVA and iPhone Objective-C.
  • Supports the most diagnosis methods in the industry (data flow, control flow, architecture, meaning, and environment analysis).
A proven solution that has been applied to worldwide enterprises.
  • The most systems have been introduced to the first and second financial sectors and telecommunication operators.
  • Secure coding standard was chosen and introduced in a conglomerate group.
  • The most solutions have been introduced in various businesses such as manufacuring, distribution, electronic commerce, portal, software development, etc.
Expected Effect
  • Solves immediate security issues within software that have been installed.
  • Reduces systemic risks of internally developed software or externally developed software.
  • Improves reliability and fidelity of vulnerability diagnosis results by applying multiple analysis engines.
  • Possible to obtain stability and flexibility, and develop and operate organized systems.
  • Follows regulations according to internal/external security guidelines.
  • Reduces time to recognize and solve software vulnerability.
  • Reduces costs related with development, revision, and compliance with regulations.
  • Greately improves productivity by automating application security procedures.
  • Accelerates Time To Market (TTM) by minimizing delay time related with security.
  • Provides a powerful performance and functions based on international recommendations.
Contact us