OpenText has unveiled the second technology of its superior utility safety auditing device, Fortify Audit Assistant. This announcement was made in anticipation of the inaugural OpenText Safety Summit 2024 scheduled for February 6.
The expertise is designed to fulfill the challenges confronted by at the moment’s builders, who’re navigating an more and more complicated risk panorama in multi-cloud environments. OpenText’s initiative underscores the rising want for stylish instruments and practices in utility safety, responding to the pressures safety groups face in guaranteeing software program integrity and reliability from the outset.
Main updates to Fortify Audit Assistant embody the flexibility to account for mannequin drift, flexibility to be taught from an organization’s distinctive setting, expansive mannequin experience by way of language specification, and the flexibility to think about the nuances of scan outcomes.
The brand new iteration of Fortify Audit Assistant minimizes the incidence of false positives and irrelevant alerts. The device additionally goals to streamline builders’ work, enabling them to focus on addressing probably the most important vulnerabilities. The refined auditing course of is a direct response to the calls for for extra environment friendly utility safety testing, which has historically been slowed down by the time-consuming and guide triaging of static evaluation outcomes, in accordance with OpenText.
The brand new technology of Fortify Audit Assistant is designed to combine safety concerns on the earliest phases of the software program growth lifecycle, ranging from code inception. This strategy helps with constructing software program techniques that aren’t solely sturdy and dependable but additionally inherently safe. By embedding safety measures from the start, OpenText goals to mitigate dangers and improve the general resilience of software program merchandise in opposition to rising threats.
The device leverages machine studying expertise to automate the safety auditing course of, studying from the experience of Fortify’s human auditors. This utility of AI is a strategic transfer to deal with the hole in accessible experience for guide examination, which is each resource-intensive and impractical for a lot of organizations. By automating the evaluation of software program vulnerabilities, Fortify Audit Assistant guarantees to considerably cut back the overhead related to hiring groups of consultants in software program engineering, pc science, and cybersecurity, the corporate defined.
“The primary technology of Fortify Audit Assistant was nicely forward of its time with its use of predictive analytics and machine studying,” mentioned Prentiss Donohue, cybersecurity govt vice chairman at OpenText. “These pioneering efforts paved the best way for us to derive 10 years of information from human consultants and switch them into predictive fashions which are considerably extra correct in comparison with the earlier technology’s fashions, bettering efficacy in auditing by decreasing false positives as much as 90%. Enterprises can now leverage this depth of knowledge—one thing nobody else within the trade can present—inside their very own software program assurance applications.”