Tools that help soft-ware developers write secure code are notably under-represented in today's corporate arsenals. The reason is that checking source code for security weaknesses is a difficult task, given the number of potential threats and the almost endless ways to code programs. Enterprises addressing these security threats at the source code level typically rely on code reviews, security audits, and tools that perform syntactical searches of code bases. These approaches tend to be slow, expensive, and insufficiently comprehensive. Fortify Software's Source Code Analysis Suite 3.0, which understands code and automates security analysis during the development cycle, promises welcome relief.
展开▼
