HDTV/3D TV News
Security specialists Comsec Consulting this week launched a new on-demand code review service.
Codefend allows developers to submit their non-compiled code for a security review.
Comsec analyses the code for vulnerabilities and threats using automated code analysis tools and human security experts.
Comsec claims the service could slash code rewrite costs in half, with UK businesses traditionally spending 75% of software development budgets on eliminating security flaws.
Because the service is on-demand, businesses do not have to invest in costly code-reviewing software with an annual licensing fee.
Stuart Okin, Comsec’s UK managing director, said reviewing code is vital for businesses seeking to be invulnerable to security threats.
” Don’t get me wrong: firewalls and anti-virus are important but, if you have a code vulnerability such as a filter evasion, cross site scripting or whatever, malware will get straight through the firewalls as if they don’t exist,” Okin said.
Ed Gibson, Microsoft UK’s chief security adviser, said eliminating code flaws at the design stage can cost 30 times less than fixing flaws after release.
“[Codefend] will take away any reason not to have your code checked because you don’t need someone in-house full time,” Gidson said.
Comments (0)
