Reduce information security risks for the development stage through analysis and discrimination of test reports
The primary auditing method in software development is through source code inspection, to identify known or unknown program vulnerabilities.
OpenText Fortify SCA Named AST Leader by Gartner
-
Translation
-
Analysis
-
Audit
-
Supports 29 languages
-
500+ vulnerability categories
Source code testing service
-
01
Source Code Inspection Service
- Program code testing (initial test / retest)
- On-site explanation by consultant
- fortiry sca term licence
-
02
Fortify construction / MA service
- Software building
- Regular update of Fortify SCA tools and Rule Pack
- Customize report design
- Customize testing rules
-
03
Vulnerability consulting, program repair recommendations
- Interpret the contents of the reports generated by the testing tools
- Provide patching recommendations and elimination suggestions
-
04
Vulnerability consulting, program repair recommendations
- Fortify software tool operation
- Writing of testing language
- Interpret test report
-
05
CI / CD Automatic testing plan
- Automatic testing integration
- Integration of false-positive elimination mechanisms
- Isolate developers and testing equipment