SOFTWARE INTELLIGENCE FOR APPLICATION STRUCTURAL SECURITY

VENERDÌ 28 GIUGNO
H 11:00
AULA MAGNA U. DINI
LARGO LUCIO LAZZARINO 2

 

Abstract
Software Intelligence is insight into software systems structure, aiming at identifying and solving business impactful vulnerabilities in the software assets architecture and interdependencies. Software Intelligence is based on 4 main pillars: Software Risks, Agile Size, Software Flaws and Software Modernization. With respect to application security topic, the most involved pillars are the Risk and the Flaws. In fact, Software Flaws are all the structural patterns that create potential outages, security breaches and data corruption. This pillar is mainly focused on the application security development and involve the most known security certifications like CWE top 25 or OWASP top 10 2017. However, newest developed software are more and more a composition of libraries, framework and OSS code. All these piece of code are part of the final applications and should be considered not only for the functionalities that they implement but also for their vulnerabilities that could have embedded into their code. In the annual Clusit report, it is assessed that the attacks related to known vulnerabilities (CVE) exploitation are increased of 40% in the last year. Thus, Software Intelligence could be considered as the software MRI diagnostic to assess software health, to help you to improve application security and reduce software risks.

AttachmentSize
PDF icon locandina_seminario_28giu19.pdf2.38 MB