Making software more secure
Application security is no longer an afterthought but a foremost. Application security is important because current applications are often available on various devices and networks and connected to the cloud, increasing vulnerabilities to threats and security breaches. There is a growing pressure and incentive not only to ensure security at the network level, but also within the applications themselves. One of the reasons for this is that hackers are preying on applications more with their attacks today than in the past. Application security testing can reveal weaknesses at the application level, helping to prevent these attacks.
Glog project is focused on research and development of the solution that is able to give remediation advice for security vulnerabilities in software code based on context or, even more, to automatically fix the security vulnerabilities in the code. We are developing such a solution based on machine learning and AI. Agility in software security is becoming a reality.
It’s estimated that 90 percent of security incidents result from attackers exploiting known software security vulnerabilities. Resolving those issues early in the development phase of software could reduce the information security risks facing many organizations today. A number of technologies and tools are available to help developers catch security flaws before they’re baked into a final software release. They include SAST, DAST, IAST, and RASP.
However, you develop your software and scan it for security vulnerabilities with static, dynamic, interactive (SAST, DAST, IAST) or other application security testing methodologies and tools. They report a number of potential security vulnerabilities, which your developers and other teams need to analyze and fix the code. Then you rescan, find some old and some new vulnerabilities, then remediate again… This takes a lot of time, creates friction between teams and jeopardizes your delivery timelines. If you deliver and deploy vulnerable code that can be breached, the damage could be huge and your reputation ruined.
Sounds familiar, doesn’t it?
Now imagine a solution that is able to triage issues, flag false positives and then give remediation advice based on context for real vulnerabilities or, even more, to automatically fix the security vulnerabilities in your code without bothering your development teams.
We are developing such a solution based on machine learning and AI. Agility in software security is becoming a reality.
Ultimate goal: Auto-remediation of security vulnerabilities in software code!
Please contact us at firstname.lastname@example.org to learn more about Glog.
Partner with Glog team on mission to make software more secure. Boost your software immunity, remove vulnerable spots.