Veracode
WHO:
Chris Wysopal, Co-Founder and CTO, Veracode, Inc.
WHAT:
STAREAST
2008
WHEN:
Thursday, May 8, 2008
3:00 - 4:15 p.m. ET
WHERE:
Rosen Centre Hotel
9840 International Dr.
Orlando, FL
DESCRIPTION:
"Finding Backdoor Threats with Static Analysis"
According to research from Gartner, 75% of all new security attacks
are against applications and 90% of all vulnerabilities reside
within software. However, enterprise IT security continues to be
concentrated on the network to protect the perimeter from external
attack rather than detecting vulnerabilities on the inside. In some
of the world's largest businesses, there's evidence that malicious
users may be deliberately leaving "backdoor" vulnerabilities to be
exploited later when applications are put into full production.
Methods are available to detect backdoors in your software, with
static analysis as the most effective technique available.
Chris Wysopal will explain the technology and benefits of binary and
source code static analysis and presents various techniques for
inspecting software for backdoors along with the pros and cons of
each method. He will show examples of how backdoors present
themselves in software and how best to find them.
For more information on the event, please visit: http://www.sqe.com/STAREAST/Schedule/Default.aspx.
About Veracode
Veracode is the world’s
leader for on-demand application
security testing solutions. Veracode SecurityReview is the industry’s
first solution to use patented binary code analysis and dynamic web
analysis to uniquely assess any application security threats including
vulnerabilities and malicious code. SecurityReview performs the only
complete and independent security audit across any internally developed
applications, third-party commercial off-the-shelf software and offshore
code without exposing a company’s source code.
Delivered as an on-demand service, Veracode delivers the simplest and
most-cost effective way to implement security best practices, reduce
operational cost and achieve compliance without requiring any hardware,
software or training.
Veracode has established a position as the market visionary and leader
with awards that include recognition as a Gartner ‘Cool
Vendor 2008, Info Security Product Guide’s “Tomorrow’s
Technology Today Award 2008,” Information
Security’s “Readers’
Choice Award 2008,” AlwaysOn Northeast’s
“Top 100 Private Company 2008,”
NetworkWorld “Top 10 Security Company to
Watch 2007,” and Dark Reading’s
“Top 10 Hot Security Startups 2007.”
Based in Burlington, Mass., Veracode is backed by .406 Ventures, Atlas
Venture and Polaris Venture Partners.
|