IBM has tapped its Rational tools division to deliver new software that advances security analysis.
Slated for announcement on Dec. 3, IBM’s new software and analysis capabilities provide a more efficient and accurate way to help organizations design, build and manage secure applications, the company said.
The new offering is based on software IBM got through its acquisition of Ounce Labs.
IBM officials said the new software consolidates software vulnerability analysis and reporting into a single view across the enterprise. With this solution, developers can assess security threats across the entire software development lifecycle, enabling global development teams to easily identify and test security exposures, and help reduce the risks and costs associated with security and compliance concerns, IBM said.
For example, said IBM, organizations can use the software to automate application security audits and source code scanning to ensure that the network and Web-based applications are secure and compliant. This delivers improved accuracy of vulnerability identification and remediation.
The new security offerings include enhancements to the IBM Rational AppScan portfolio that further simplify security vulnerability analysis and identification for software developers, IBM said. Moreover, as part of the new features, IBM Research provided string analysis, a software development capability that helps simplify the security testing process by automatically detecting and verifying which Web application development input needs to be cleansed to remove security risks. This capability helps accelerate the accuracy and efficiency of security testing by the development community, regardless of their security expertise.
For more, read the eWeek story: IBM Launches New Software Security Solution.