Quality & Compliance
Coverity release ties in well to the latest MITRE CWE Top 25
MITRE’s 2019 CWE Top 25 list contains many code quality issues that can result in security vulnerabilities. Static analysis can help you mitigate them. The post Coverity release ties in well to ...
Quantifying software quality risks in tech M&A
Tech M&A typically evaluates security and legal risks, but what about software quality risks? Poor code and architecture quality can have a lasting impact. The post Quantifying software quality risks in tech ...
The False Claims Act: 156 years old and newly relevant to software security
We recently saw the first settlement by a company charged under the False Claims Act for failing to meet cyber security standards. Is there more to come? The post The False Claims ...
Let’s Talk Licenses: Beware the Beerware License
Many companies are relaxed about reusing software under the Beerware License and similar open source licenses. But could licensors have a real claim? The post Let’s Talk Licenses: Beware the Beerware License ...
Awash in regulations, companies struggle with compliance
The list of regulatory compliance challenges facing companies grows longer every time a new regulation is introduced. But do security regulations even work? The post Awash in regulations, companies struggle with compliance ...
Software quality: It can be a matter of life and death
Safety-critical software powers everything from airplanes to power plants, defib machines, and seatbelts. And quality issues can lead to injury and death. The post Software quality: It can be a matter of ...
