Software analyzes web applications for security risks.February 8, 2006 -
Assessment Management Platform (AMP) v2.0's capabilities enable granular control over activities including user access, scanning rights, and report access. Security professionals can remotely activate and schedule enterprise-wide local, regional, or global application assessments without requiring dedicated user to kick-off and manage scans. AMP enables departments to share information and collaborate to remove security vulnerabilities early in software development lifecycle.
(Archive News Story - Products mentioned in this Archive News Story may or may not be available from the manufacturer.)
Original Press release
SPI Dynamics
115 Perimeter Center Place, N.E.
Atlanta, GA, 30346
USA
SPI Dynamics Automates Comprehensive Enterprise-Wide Web Application Security Risk Management with AMP(TM) 2.0
ATLANTA, Jan. 16 -- S.P.I. Dynamics Incorporated (http://www.spidynamics.com/ ), the Web application security experts, today announced the release of AMP 2.0 (Assessment Management Platform), the only comprehensive enterprise solution for Web application security risk management, measurement and tracking. AMP automates application risk management throughout the organization by providing a global view of application security with centralized control.
"Automated application security testing has become standard best practice. As organizations integrate application security scanning globally and become more proficient at identifying and correcting application security vulnerabilities, their automation requirements become more complex. It becomes critical to control which sites are scanned, when they can be scanned and who can scan them," said Erik Peterson, VP of Product Management for SPI Dynamics. "With AMP 2.0, large enterprises can successfully assess the security of their entire Web application portfolio, at all stages of the software lifecycle."
"At the University of Missouri our Web applications are developed in a host of languages by faculty, students, and dedicated development staff from multiple divisions campus-wide. This creates an incredible burden on security staff to properly inspect and re-inspect code as it changes across the organization," comments Allen Brokken, Information Security and Account Management - IAT Services, University of Missouri. "A platform such as AMP will allow us to ensure that once an application has been certified as secure, it will stay that way. An application management platform will enable us to push the inspection process closer to the developers and implement a lifecycle approach to more secure application development."
AMP 2.0's sophisticated risk management capabilities enable granular control over activities including user access, scanning rights and report access. AMP extends software risk management capabilities by enabling security professionals to remotely activate and schedule enterprise-wide local, regional or global application assessments without requiring a dedicated user to kick-off and manage the scan(s). AMP's advanced security and audit logging provides information needed to track all application security activity across an entire enterprise. Security professionals, developers and quality assurance professionals use AMP for risk management and to continuously analyze Web applications for security vulnerabilities. AMP enables these departments to share information and collaborate to remove security vulnerabilities early in the software development lifecycle, while providing the metrics enterprise executives need to monitor and track progress.
AMP's unique design offers customization for any environment. AMP's Web services API provides many ways to integrate AMP and its risk management capabilities with existing systems. AMP sensors connect with the AMP Manager using a fault tolerant network transport to ensure scan data is never lost on even the most distributed networks.
AMP 2.0 extends the ability of SPI Dynamics' WebInspect(TM) Web application assessment product; the industry's most advanced Web application security technology. AMP 2.0 now enables WebInspect 5.8 (announced today: http://www.spidynamics.com/news/pr/pr...) users to scale the intelligent scanning technology in a distributed environment to consolidate assessment information and risk management into a single enterprise database and to provide centralized control and oversight of the application risk assessment process.
"Web application scanning must be included as a required part of your vulnerability management program. Because new techniques for attacking Web applications are constantly growing and application updates are inevitable, regular scanning is necessary," said Neil McDonald, Vice President, Gartner, Inc. "Start with Web applications that are accessible externally and considered critical and press internally to gain adoption of these tools by the development organization."
SPI Dynamics delivers a comprehensive suite of products and services that support the entire Web application lifecycle. These security products provide risk management functionality, identify vulnerabilities early in the software lifecycle, and help ensure that no new vulnerabilities are introduced throughout the life of the application. These products are designed to foster collaboration among developers, quality assurance and security professionals. Trustworthy software becomes possible only when security and risk management become standard requirements in the entire development process.
About S.P.I. Dynamics Incorporated
Start Secure. Stay Secure.
Security Assurance Throughout the Application Lifecycle.
SPI Dynamics' suite of Web application security products help organizations build and maintain secure Web applications, preventing attacks that would otherwise go undetected by today's traditional corporate Internet security measures. The company's IT security products enable all phases of the software development lifecycle to collaborate in order to build, test and deploy secure Web applications. SPI Dynamics' internal research and development group, SPI Labs, is widely recognized as one of the leading authorities in Web application security and risk management. Founded in 2000 by security specialists, SPI Dynamics is privately held with headquarters in Atlanta, Georgia. For more information on Web application security, visit http://www.spidynamics.com/ or call (678) 781-4800.
Source: S.P.I. Dynamics Incorporated
CONTACT:
Ashley Vandiver of SPI Dynamics,
+1-678-781-4841,
Mobile: +1-404-432-8657,
avandiver@spidynamics.com
Web site: http://www.spidynamics.com/
|
|
|
|
|
|
|
| 
