Article

Ounce 4.2 touts application security report generation tool

SearchSoftwareQuality.com Staff

Ounce Labs announced the release of Ounce 4.2, featuring the SmartAudit automated report generation tool for security analysts, development manager and risk management auditors.

SmartAudit translates the results of Ounce's source code security analysis into comprehensive audit reports that measure compliance with software security best practices and regulatory requirements.

Each SmartAudit report features the following:

  • Security Compliance Report Card: This is an at-a-glance, top-line view of the compliance state of an application.
  • Detailed Security Audit Review: This runs across all vulnerability categories, including both coding errors and the design flaws that most critically endanger data privacy and operational integrity, such as errors in encryption, logging and access control.
  • SmartAudit Drill-Down: Direct access to the non-compliant source code for further analysis and remediation prioritization and assignment.

The initial SmartAudit reports that will be offered include the following:

Requires Free Membership to View

  1. OWASP Top 10: This report identifies the existence and location in the source code of any of the top 10 most critical Web application security vulnerabilities, a list complied by the Open Web Application Security Project.
  2. Software Security Profile: This report provides an overall view of the security state of an application, across every major vulnerability category.

Ounce Labs will continue to develop additional reports for the SmartAudit suite in future releases according to changing software security requirements and industry demand.

Ounce 4.2 will be generally available Feb. 28, 2007.


There are Comments. Add yours.

 
TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: