Security start-up claims to inspect source code for holes, revolutionising market
Security start-up Fortify Software claims to have developed a new security system that will inspect source code for vulnerabilities and hence make hackers lives far more difficult.
The Californian company's two new products analyse computer code for security violations and enforce secure coding practices. One inspects source code written in C++ and Java, the other probes security holes in software applications, Fortify said.
The new products give companies a way to strengthen software applications against attack by spotting and removing common vulnerabilities like buffer overflows, format string errors and unchecked input from the product code early in the development process, said Mike Armistead, Fortify VP of marketing.
The company has been quietly developing the technology for a while, but its website has nothing but a huge, fancy Flash movie at the moment. It is also unknown how much the suites will cost, and where and when they will be made available.
At the heart of Fortify's products is technology called "extended static checking" that analyses the properties of software code rather than the behaviour of the finished program, said Brian Chess, chief scientist at Fortify.
Official Story Here
Linear Mode
