The requirements are in such a place where the customers want to do a continuous assessment of their applications. The customers were looking for something around static security and dynamic security, and in all those areas, they were looking for an industry leader with a proven solution. Synopsys is a Gartner leader, so I position this particular technology for the technical pre-sales part of it. Then, we looked at the customer environment, different use cases, the client, and all those kinds of things. We started scanning a few of their applications, getting results, some eye-openers, and identifying critical assets. It's a continuous process, a three-year project, involving continuous security assessment across more than 300 applications. So, my tool, Code Dx, scans all these different applications, revealing design reserves, and it's part of a continuous improvement plan.
Find out what your peers are saying about Black Duck, Veracode, Checkmarx and others in Static Application Security Testing (SAST). Updated: October 2024.
Static Application Security Testing (SAST) solutions are used to identify and fix security vulnerabilities in software applications. They can be used at all stages of the software development lifecycle, from development to testing to deployment.
The requirements are in such a place where the customers want to do a continuous assessment of their applications. The customers were looking for something around static security and dynamic security, and in all those areas, they were looking for an industry leader with a proven solution. Synopsys is a Gartner leader, so I position this particular technology for the technical pre-sales part of it. Then, we looked at the customer environment, different use cases, the client, and all those kinds of things. We started scanning a few of their applications, getting results, some eye-openers, and identifying critical assets. It's a continuous process, a three-year project, involving continuous security assessment across more than 300 applications. So, my tool, Code Dx, scans all these different applications, revealing design reserves, and it's part of a continuous improvement plan.