Secure Coding mailing list archives

Dr. Dobb's | The Truth About Software Security | January 20, 2007

From: ken at krvw.com (Kenneth Van Wyk)
Date: Tue, 30 Jan 2007 05:24:40 -0500

FYI, there's an interesting article on ddj.com about a Symantec's new  
"Veracode" binary code analysis service.

http://www.ddj.com/dept/security/196902326

Among other things, the article says, "Veracode clients send a  
compiled version of the software they want analyzed over the Internet  
and within 72 hours receive a Web-based report explaining--and  
prioritizing--its security flaws."

Any SC-Lers have any first-hand experience with Veracode that they're  
willing to share here?  Opinions?

Cheers,

Ken
-----
Kenneth R. van Wyk
SC-L Moderator
KRvW Associates, LLC
http://www.KRvW.com




-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://krvw.com/pipermail/sc-l/attachments/20070130/6a7ffe07/attachment.html 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: PGP.sig
Type: application/pgp-signature
Size: 186 bytes
Desc: This is a digitally signed message part
Url : http://krvw.com/pipermail/sc-l/attachments/20070130/6a7ffe07/attachment.bin

Current thread:

Dr. Dobb's | The Truth About Software Security | January 20, 2007 Kenneth Van Wyk (Jan 30)
- Dr. Dobb's | The Truth About Software Security | January 20, 2007 ljknews (Jan 30)
- Dr. Dobb's | The Truth About Software Security | January 20, 2007 Michael S Hines (Jan 30)
  - Dr. Dobb's | The Truth About Software Security | January 20, 2007 Gadi Evron (Jan 30)
  - Dr. Dobb's | The Truth About Software Security | January 20, 2007 der Mouse (Jan 30)
- Dr. Dobb's | The Truth About Software Security | January 20, 2007 Chris Wysopal (Jan 30)
  - Dr. Dobb's | The Truth About Software Security | January 20, 2007 mudge (Jan 30)