Welcome to Parasoft Blog

Picture of Arthur Hicken

Arthur Hicken

Arthur has been involved in software security and test automation at Parasoft for over 25 years, helping research new methods and techniques (including 5 patents) while helping clients improve their software practices.

When Does Software Composition Analysis (SCA) replace SAST or DAST?

By Arthur Hicken on August 22, 2019

The short answer is never. There, I just saved you enough time that you can go and do the right thing and run SAST and DAST and work on hardening...

Continue Reading

Getting Started with AppSec using OWASP

By Arthur Hicken on July 18, 2019

We continue to see large data breaches affecting organizations of all sizes. As cybersecurity problems continue and even increase in frequency and...

Continue Reading

SAST vs DAST: How to Use Them Together, Not Separately

By Arthur Hicken on March 27, 2019

People often say that SAST and DAST complement each other, but then just recommend using both, which isn’t necessarily complementary as much as it...

Continue Reading

What is shift-left testing?

By Arthur Hicken on December 11, 2018

The earlier you find out about problems in your code, the less impact they have. It also costs less to deal with them. In this blog, we explore...

Continue Reading

SQL Injections and Election Security

By Arthur Hicken on November 6, 2018

Is your head in the sand? Not doing adequate security testing might make you feel safe, but not knowing the vulnerabilities of your code won't...

Continue Reading

Secure your software with SEI CERT C

By Arthur Hicken on September 27, 2018

The SEI CERT secure coding standard is a great choice for securing your code, especially if your application is embedded or safety-critical. In...

Continue Reading

How Does Static Analysis Prevent Defects and Accelerate Delivery?

By Arthur Hicken on June 8, 2018

To build quality into your software from the beginning, use static analysis — the simplest and most effective activity software engineers can...

Continue Reading

Using Static Analysis to Achieve “Secure-by-Design” for GDPR

By Arthur Hicken on May 10, 2018

Getting static analysis set up properly with the right tool and the right rules will help you secure your software, prove you’re doing the right...

Continue Reading

Code Coverage and Automated JUnit Test Case Generation

By Arthur Hicken on March 16, 2018

If code coverage is an issue for you, make sure you’re measuring it right, and measuring all of it from all the tests you run. Leverage automatic...

Continue Reading