Skip Links

Network World

  • Social Web 
  • Email 
  • Close

Ounce Labs updates software risk-analysis tool

New release adheres to handful of industry specifications
By Cara Garretson , Network World , 06/04/2007

Ounce Labs on Monday announced a new version of its software risk-analysis tool designed to help enterprises spot potential security weaknesses in applications.

Slated for release in early July, Ounce 5.0 includes checks for compliance with the Payment Card Industry (PCI) standard, the Open Web Application Security Project (OWASP) Top 10 2007 and the Common Weakness Enumeration specification, according to company officials. This means Ounce 5.0 customers will be able to make sure the applications they build adhere to the rules of these specifications, according to company officials.

The upgrade was announced at the Gartner IT Security Summit, held this week in Washington, D.C.

Version 5.0 includes improvement to the tool’s analysis capabilities, such as more granular vulnerability analysis, pattern-based semantic analysis and better triage of vulnerabilities, officials say. By improving the analysis capabilities of the tool, Ounce lets customers focus more on the high-impact vulnerabilities in software and less on the mundane issues, officials say.

Pricing for Ounce 5.0 has not been announced.

Partner Content

Brilliantly simple security and control solutions for email, web and endpoint

www.sophos.com

Stopping data leakage

Learn how to exploit your current security investment to control the information that flows into, through and out of your network.

Download the white paper.

Why detection rates aren't enough

Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask to prospective vendors to get the right endpoint solution.

Download the white paper.

Unauthorized applications: Taking back control

Employees installing and using unauthorized applications like IM, VoIP, games and peer-to-peer file-sharing applications cause many businesses serious concern. How do you control these applications?

Download the white paper.

Comment
Login
Forgot your account info?
Add comment
Anonymous comments subject to moderator approval. Register here for member benefits.
Have a NetworkWorld account? Log in here. Register now for a free account.

Videos

rssRss Feed
Save The Date!
What They Are Saying

If the IT manager is knowledgeable regarding Cisco technology, he would have 2 options. Option 1 - Consult...- Anonymous

Join the Discussion