Deep Static Analysis Everywhere:
Transferring the lessons learned from safety and security critical software to other software domains
In this webinar we will discuss the scenario in which companies find themselves today facing the ever-growing cybersecurity risks, and how they can protect themselves, and their customers, from these threats.
In particular we provide insight into how static code analysis must face the challenges set by the emergence of IoT. Previously disconnected, safety and security critical embedded software controlling the physical world suddenly becomes part of the connected ecosystem where enterprise applications can interact with it.
Whereas embedded software (typically written in C/C++) must comply with strict safety and security standards, there are no such requirements for enterprise software (typically Java/C#). However, in an IoT scenario the invulnerability of the entire system depends on all its parts: it is only as secure as its weakest link. This means that missing a vulnerability in the back-end or middleware application may lead to putting the physical system at risk, and brings on a completely new challenge for enterprise sw quality and security teams.
During the webinar we will illustrate some real-life examples, provide guidelines for how to assess the efficiency of static analysis tools using the independent OWASP Benchmark comparison and take a brief look at the Julia Static Analyzer
for Java and .Net.
(Duration: approx. 45min)
Herby I register for the following webinar: