Access "Product review: Klocwork Insight 8.0"
This article is part of the June 2008 issue of Five crucial virtualization do's and don'ts
SOFTWARE SECURITY Klocwork Insight 8.0 REVIEWED BY JAMES C. FOSTER Klocwork Price: Starts at $25,875 (five user licenses, one build server license) Klocwork Insight is a source code analysis product that helps automate security vulnerability and quality risk analysis, remediation and measurement. It employs more than 200 different techniques for identifying software flaws for C, C++ and Java. This kind of tool is increasingly important, as very few people are capable of analyzing and, most importantly, fixing software security flaws. Installation/Configuration B- The installation is difficult for a user of any type, requiring several different modules and server components to be installed or loaded prior to use. Plan to spend time on training. The upside to the initial learning curve is scalability and flexibility for large, hybrid or segregated development environments. Licensing can be centrally managed across multiple teams and updated in seconds via a quick change of the license file. MySQL is utilized as the backend database and can be configured at ... Access >>>
Premium Content for Free.
Virtualization server security best practices
by Thomas Ptacek
Avoid server virtualization security bad practices with these dos and don'ts. Get info on virtualization products, segmentation, implementation, avoiding malware, and staging, deploying and patching virtual machines, segmentation and implementation.
Product review: Credant Mobile Guardian 6.0
Product review: Klocwork Insight 8.0
Embedded Security Safeguards Laptops
Tech Focus: Secure From Within
Security Awareness Employee Training Essential to Infosec Program
Security awareness training initiatives such as online tutorials, newsletters, MP3s and prizes get the security message across to users.
- Virtualization server security best practices by Thomas Ptacek
Spam blockers losing ground on sophisticated attackers
SPAM Spam hasn't been "solved"; in fact, the scourge has grown worse as attackers continually trump countermeasures and refine their focus on high-value targets.
Product review: Mu-4000 Security Analyzer
Product review: Array Networks SPX2000
Security Services: QualysGuard Security and Compliance Suite
At Your Service
GRC Tools Help Manage Regulations
GOVERNANCE, RISK AND COMPLIANCE We look at three GRC products and the distinct ways these tools can help organizations navigate the complicated regulatory game.
- Spam blockers losing ground on sophisticated attackers
CISOs Must Innovate to Enable Business
Editor's Desk: Be an Enabler
Architect Security and Compliance Programs to Be Complementary
Perspectives: Shake On It
Address Authentication and Transaction Validation Protocols to Stem Identity Theft
Layer8: Tarnishing Good Names
Interview: Financial Services CISO David Pollino
CISO Uses Predictive Analystics to Bolster Risk Management Program
- CISOs Must Innovate to Enable Business
More Premium Content Accessible For Free
Deploying data protection technologies properly requires a lot of time and patience. While most firms can get started by using preconfigured policies...
The bring your own device (BYOD) movement, which has flooded the enterprise with employee-owned smartphones, tablets, phablets and purse-sized ...
For so long penetration testing meant hiring an expert to use skill and savvy to try to infiltrate the company system. But, as with most ...