http://www.xconomy.com/boston/2008/01/11/closing-the-back-door-veracode-verifies-software-code-one-bit-at-a-time/ Business + Technology in the Exponential Economy Sat, 11 Feb 2012 03:54:18 +0000 hourly 1 http://wordpress.org/?v=3.0.4 http://www.xconomy.com/boston/2008/01/11/closing-the-back-door-veracode-verifies-software-code-one-bit-at-a-time/comment-page-1/#comment-6516 Closing the Back Door: Veracode Verifies Software Code One Bit at a Time | My Life As Tue, 15 Jan 2008 23:34:13 +0000 http://www.xconomy.com/2008/01/11/closing-the-back-door-veracode-verifies-software-code-one-bit-at-a-time/#comment-6516 [...] Software, Security, programming Wade Roush wrote: Many companies know that they need outside help evaluating software for security flaws, whether it’s code they’ve written themselves or software they’re considering buying from a third-party vendor. But few organizations (or their vendors) are willing to let the actual source code for their applications leave their premises, over concerns about potential copying and theft. Enter Veracode, a Burlington, MA, startup founded in 2006 as a provider Click here for the source [...] [...] Software, Security, programming Wade Roush wrote: Many companies know that they need outside help evaluating software for security flaws, whether it’s code they’ve written themselves or software they’re considering buying from a third-party vendor. But few organizations (or their vendors) are willing to let the actual source code for their applications leave their premises, over concerns about potential copying and theft. Enter Veracode, a Burlington, MA, startup founded in 2006 as a provider Click here for the source [...]

]]> http://www.xconomy.com/boston/2008/01/11/closing-the-back-door-veracode-verifies-software-code-one-bit-at-a-time/comment-page-1/#comment-6442 OWASP Sun, 13 Jan 2008 15:08:04 +0000 http://www.xconomy.com/2008/01/11/closing-the-back-door-veracode-verifies-software-code-one-bit-at-a-time/#comment-6442 No way. Binary analysis simply doesn't have the same contextual information as a consultant. You can't figure out security without knowing what the code is supposed to do. And you *can't* learn that from looking at 1's and 0's. Why don't you just tell the truth about what you *can* do - I'm sure there's some value in the tool. But your hype is undermining your credibility. No way. Binary analysis simply doesn’t have the same contextual information as a consultant. You can’t figure out security without knowing what the code is supposed to do. And you *can’t* learn that from looking at 1′s and 0′s. Why don’t you just tell the truth about what you *can* do – I’m sure there’s some value in the tool. But your hype is undermining your credibility.

]]> http://www.xconomy.com/boston/2008/01/11/closing-the-back-door-veracode-verifies-software-code-one-bit-at-a-time/comment-page-1/#comment-6398 Bringing Security to the Masses « HighContrast Sat, 12 Jan 2008 17:11:34 +0000 http://www.xconomy.com/2008/01/11/closing-the-back-door-veracode-verifies-software-code-one-bit-at-a-time/#comment-6398 [...] 12, 2008 Posted by Simeon Simeonov in SaaS, Security, startups. trackback Xconomy did a good write up on Veracode. Matt’s point below is spot on: the only way to address the application security [...] [...] 12, 2008 Posted by Simeon Simeonov in SaaS, Security, startups. trackback Xconomy did a good write up on Veracode. Matt’s point below is spot on: the only way to address the application security [...]

]]>