Cisco ASA 5500 Series by Cisco Systems, Inc.. The Cisco® ASA 5500 Series Business Edition is an enterprise-strength comprehensive security solution that combines market-leading firewall and optional content security capabilities, more... >> Discover more offerings from Cisco Systems, Inc..

Advanced Virtualization E-Book - Chapter 3: Essentials of High-Availability Planning by Dell, Inc. and Intel® March 05, 2010 - (Free Research) Design, management and testing can make or break high availability in your virtual environment. Chapter 3 of this Advanced Virtualization E-Book discusses the essentials of high availability planning.  (EBOOK)

Improve App Delivery with an HTML Rewrite by F5 Networks December 12, 2012 - (Free Research) This E-Guide from SearchNetworking.com describes why many web content optimization startups are rewriting HTML and how your organization can benefit from these results. View now to learn more!  (EGUIDE) READ ABSTRACT |

Empower your Developers by Coverity May 16, 2011 - (Free Research) The repercussions of releasing unsecure software in today’s markets are severe – due in large part to the proliferation of constantly-connected, mobile devices. This white paper provides an overview of these challenges, and demonstrates the steps you can take to arm your developers against the risks of modern application development.  (WHITE PAPER) READ ABSTRACT |

Application Note: Structured Testing - The Path to Thorough Code Coverage by McCabe Software, Inc. March 15, 2011 - (Free Research) Basis path testing, also known as Structured Testing, is the primary code-based testing strategy recommended by McCabe Software and supported by McCabe IQ. The main idea behind this testing is that decision outcomes within a software function should be tested independently. This article provides an overview of the benefits of basis path testing.  (WHITE PAPER) READ ABSTRACT |

Software Agitation: Your Own Personal Code Reviewer by Agitar Software March 10, 2011 - (Free Research) Agitator helps you debug your code while you write it - a benefit that no other existing Java Testing tool can claim. Agitator can also be extremely beneficial when run on legacy code - even code that has been reviewed by other developers and deemed to be “sufficient” and “properly written.” Learn how Agitar can be your own personal code reviewer.  (WHITE PAPER) READ ABSTRACT |

Forrester Report: Development Testing: A New Era In Software by Coverity November 23, 2011 - (Free Research) In August 2011, Forrester Consulting surveyed over 200 leading IT firms in North America and Europe to answer the question, “What are the implications of expanding testing in development, and what does it mean to development quality?”. Read this report to see the results.  (WHITE PAPER) READ ABSTRACT |

Using Code Quality Metrics in Management of Outsourced Development and Maintenance by McCabe Software, Inc. March 13, 2009 - (Free Research) This paper provides answers to basic questions relating to the management of outsourced development and maintenance. What is the metrics approach to managing sub-contractors? What is the quality of the code expected to be that has been developed by the sub-contractor? Read on for the answers to these and other important considerations.  (WHITE PAPER) READ ABSTRACT |

Automating Your Code Review: Moving to a SaaS Model for Application Security by Veracode, Inc. February 10, 2009 - (Free Research) Today’s application has become the enterprise’s ‘‘new perimeter’’. With better network‐level security technology hardening the network perimeter, malicious attackers are now focusing their efforts to strike at the least defended points ‐ the application. Read on to learn about automating code review for greater application security.  (WHITE PAPER) READ ABSTRACT |

Software Agitation:Your Own Personal Code Reviewer by Agitar Software April 19, 2012 - (Free Research) <p>Exercising Java code is a painstaking yet critical process for developers. This white paper explains how you can free up time by implementing a testing tool designed to detect coding errors as you write Java classes, and even after they have been reviewed.</p>  (WHITE PAPER) READ ABSTRACT |

Five Steps to Secure Outsourced Application Development by Veracode, Inc. May 10, 2010 - (Free Research) Application security has become a top concern for security professionals striving to control their company’s overall risk profile. Meanwhile, companies are also saving money by outsourcing more and more custom code creation. This white paper outlines five best practices that enterprises can use to secure their outsourced application development.  (WHITE PAPER) READ ABSTRACT |

Introduction to Secure Coding for C/C++ by Klocwork September 19, 2011 - (Free Research) When budgets, customers and reputations are at stake, software developers need every available tool to ensure that applications and code are as secure as possible. Going a step above and beyond, this interactive online learning center provides detailed lessons for securing C/C++ code.  (RESOURCE CENTER) READ ABSTRACT |

Tools to unit test your JavaScript by IBM April 10, 2012 - (Free Research) While unit testing your JavaScript can be challenging, developers agree that it is becoming an increasingly important task. This white paper reviews three popular tools that you can leverage to ease the testing process and mitigate common challenges.  (WHITE PAPER) READ ABSTRACT |

Software Integrity for Agile Environments by Coverity January 27, 2011 - (Free Research) While Agile development is designed to increase efficiency, it can also introduce risk as testing cycles get condensed and serious bugs can get overlooked. In this whitepaper, learn how Coverity can help you assure the quality, security and safety of your code in Agile or hybrid development environments. Read on to learn more.  (WHITE PAPER) READ ABSTRACT |

Protecting Your Applications from Backdoors: How Static Binary Analysis Helps Build High-Assurance Applications by Veracode, Inc. May 10, 2010 - (Free Research) Backdoors pose operational risk to software that is too significant for organizations to ignore. Binary-level application testing (also called compiled-code analysis) makes it possible to examine the entire application in its final “as delivered” form. Read this white paper to learn more about protecting applications from backdoor vulnerabilities.  (WHITE PAPER) READ ABSTRACT |

Eradicate Cross-Site Scripting by Veracode, Inc. February 28, 2011 - (Free Research) The rise of e-commerce has generated a concurrent surge of Internet crime into a multi-billion-a-year industry, as criminals follow the money, the countless potential online victims and the vulnerability of web applications to easy exploitation.  (WHITE PAPER) READ ABSTRACT |

Web Application Security: Automated Scanning versus Manual Penetration Testing by Logicalis December 2008 - (Free Research) This paper explains the two primary methods for discovering Web application vulnerabilities: using manual penetration testing and code review or using automated scanning tools and static analysis.  (WHITE PAPER) READ ABSTRACT |

Architectural Quality: Design, Development and Testing Rules by hello2morrow, Inc. September 2008 - (Free Research) Read this white paper and explore essential architectural quality rules and their individual considerations. Discover a tool that enforces the most important rules automatically during development.  (WHITE PAPER) READ ABSTRACT |

Ensuring Code Quality in Multi-threaded Applications: How to Eliminate Concurrency Defects with Static Analysis by Coverity March 2008 - (Free Research) This paper will review the most common pitfalls that software developers face when creating multi-threaded applications. Discover how static analysis techniques can be used to eliminate concurrency defects earlier in the lifecycle.  (WHITE PAPER) READ ABSTRACT |

Controlling Risk Through Software Code Governance by Coverity July 2011 - (Free Research) Software code governance is a large part of mitigating risks. Discover how this strategy can proactively establish policies or thresholds around code quality and security, test against these policies early in the project lifecycle, and control risk through better visibility into areas of risk in the project or in the supply chain.  (WHITE PAPER) READ ABSTRACT |

Application security testing: Protecting your application and data by IBM November 2011 - (Free Research) Application security testing is critical in ensuring your data and applications are safe from security attack. This e-book, written for IT management, including QA and development managers, explains the basics of application security and then delves deeper into common vulnerabilities and performance concerns.  (EBOOK)

IT Risk Management: Guide to Software Risk Assessments and Audits by Veracode, Inc. June 2010 - (Free Research) Risk is a function of the likelihood that a potential vulnerability will be exploited, and the resulting impact of that exploitation. In IT systems, risk can be introduced from the internet, servers, networks, malicious insiders, and even lapses in physical security. This whitepaper provides IT risk management best practices.  (WHITE PAPER) READ ABSTRACT |

11 Best Practices for Peer Code Review by SmartBear Software September 2010 - (Free Research) This white paper recommends best practices for efficient, lightweight peer code review that have been proven to be effective via scientific study and extensive field experience. Use the techniques discussed in this paper to ensure your code reviews improve your code and make the most of your developers' time.  (WHITE PAPER) READ ABSTRACT |

Securing your Private Keys as Best Practice for Code Signing Certificates by VeriSign EMEA July 2011 - (Free Research) This paper examines recent security breaches such as Stuxnet, and offers best practice measures, especially for the Windows platform, that can help to safeguard private keys so that your company doesn't become tools of malicious hackers.  (WHITE PAPER) READ ABSTRACT |

Move Web Application Security Testing into Your Development Cycle by IBM October 2008 - (Free Research) This paper focuses on the role developers can play in solving Web application security issues, and it details how IBM Rational® AppScan® Developer Edition software can enable them to do so.  (WHITE PAPER)

State of Software Security Report by Veracode, Inc. February 2011 - (Free Research) The State of Software Security is a semi-annual report that draws on continuously updated information in Veracode’s cloud-based application risk management services platform. Unlike a survey, the data comes from actual code-level analysis of billions of lines of code and thousands of applications.  (WHITE PAPER) READ ABSTRACT |

We are always striving to improve our customer experience. Please notify us if there is a company missing that you feel should be in our directory.