Welcome to Parasoft Blog

Topic: Security

When Does Software Composition Analysis (SCA) replace SAST or DAST?

By Arthur Hicken on August 22, 2019

The short answer is never. There, I just saved you enough time that you can go and do the right thing and run SAST and DAST and work on hardening...

Continue Reading

A Better Approach to DevSecOps

By Mark Lambert on May 30, 2019

Most of the problems with DevSecOps today come back to organizations trying to "fix" security by adding testing at the end of the product cycle,...

Continue Reading

New releases of Parasoft Jtest & Parasoft dotTEST 10.4.2

By Kapil Bhandari on May 21, 2019

Parasoft released the latest versions of its industry-leading Java and .NET development testing tools today, and they are filled with great new...

Continue Reading

Prepare your medical device software for the new FDA cybersecurity guidance

By Miroslaw Zielinski on April 4, 2019

As the FDA adds more cybersecurity requirements in their new software validation guidance, medical device manufacturers can turn to static...

Continue Reading

SAST vs DAST: How to Use Them Together, Not Separately

By Arthur Hicken on March 27, 2019

People often say that SAST and DAST complement each other, but then just recommend using both, which isn’t necessarily complementary as much as it...

Continue Reading

A Guide to the Jungle of Secure Coding Standards

By Michał Rozenau on March 14, 2019

There are so many security-focused coding practices and standards (i.e. CERT, OWASP, CWE, MISRA, AUTOSAR, and a whole family of IEC 61508-based...

Continue Reading

How to Transform DevSecOps into SecDevOps

By Mark Lambert on March 7, 2019

It might sound like semantics, but the order of words carries all the weight. How do we culturally shift the way we address security? We start by...

Continue Reading

Build Security Into Your .NET Application

By Mark Lambert on February 19, 2019

The latest release of dotTEST (10.4.1) introduced significant enhancements to help development organizations deliver secure and reliable .NET...

Continue Reading

Use Runtime Error Detection to Find Security Vulnerabilities

By Anthony Mendez on January 18, 2019

Instead of relying on a security scanner to find known vulnerabilities in your code, you can use runtime error detection to find security...

Continue Reading