Importance of Third-Party Testing and Verification

All companies that create software necessarily do varying degrees of internal testing. There are numerous types of which can include: unit, system or "end-to-end", regression, performance, load or "stress", accessibility and security. Yes, that is a LOT and it's only a sample! Having a dedicated team of specialists for this purpose is ideal, but anyone that works with the same product daily is...

Continue Reading →

Tags: Press Release, software as a service, Software Security Testing, SSO, Static Binary Analysis, static password, usability, User Experience, Veracode, Application Security Testing, Password Management, #phishing, PortalGuard Configuration, PortalGuard for Education, PortalGuard Update, Service Provider, Single Sign-On (SSO), SSPR, Stand your Ground, tech support, updates, PortalGuard Service Provider, veracode verified, "static" analysis, Spoofing, Probabilistic Techniques, Exploitation of Authentication, Manual Penetration Testing, Dynamic Link Libraries, Abuse of Functionality, Exploitation of Trust, Data Structure Attacks

by Tom Hoey 0 Comments

We’ve been VerAfied! Part Two

If you have not read part one of this post, read it here.

 

Veracode’s Risk Adjusted Verification Methodology

The ‘VerAfied’ standards-based mark of security quality is one established by Veracode to provide a pragmatic approach to measure and compare risk levels related to application security, and is wholly designed with industry standards in...

Continue Reading →

Tags: Assurance Level, Common Vulnerability Scoring System, Common Weakness Enumeration, FIRST CVSS, Forum of Incident Response and Security Teams, Gartner, IT Security, MITRE CWE, National Institute of Standards and Technology, National Vulnerability Database, OWASP, PortalGuard, Static Binary Analysis, Veracode, Verafied, Dynamic Analysis, OWA, Password Security, Security Quality Score

by Tom Hoey 0 Comments

We’ve been VerAfied! Part One

If you have visited our PortalGuard.com homepage recently, you might have noticed that the PortalGuard product has been officially awarded the ‘VerAfied’ status by Veracode, a leading company in Application Risk Management and analysis.  What this means, is that throughout the scrutiny of Veracode’s series of formal application assessments, the PortalGuard software had either met or exceeded...

Continue Reading →

Tags: Application Assessment, Authentication Security, Black Box Testing, IT Security, Risk Adjusted Verification Methodology System, Software Security Testing, Static Binary Analysis, Veracode, Verafied, Verified, Application Security Testing, Dynamic Analysis, Software Vulnerability, Whit Box Testing