McCabe is Newest Member of Microsoft SDL Pro Network

Share Article

McCabe's Security Analysis Solution Key in Uncovering Vulnerabilities

McCabe IQ Security Analysis Uncovers Vulnerabilities within Source Code

“We are proud to add McCabe Software, a pioneer in the field of source code analysis, as an SDL Pro Network member,” says David Ladd, Principal Security Program Manager for Microsoft.

McCabe Software has announced their membership in the Microsoft Security Development Lifecycle (SDL) Pro Network. McCabe successfully demonstrated their exclusive path-oriented security analysis technology to Microsoft's SDL team in March.

"We are pleased to be recognized by Microsoft as a vital component in the security of critical software applications," says McCabe CEO, David Belhumeur. "Both organizations recognize the need for vigilance when building security into software at all stages of development."

The Microsoft Security Development Lifecycle (SDL) is the industry-leading software security assurance process created by Microsoft and proven effective since 2004.

"We are proud to add McCabe Software, a pioneer in the field of source code analysis, as an SDL Pro Network member," says David Ladd, Principal Security Program Manager for Microsoft.

"For organizations that need to perform vulnerability analysis on complex software, McCabe IQ's unique path oriented approach enables users to uncover and verify exploitable paths within their codebase," says Dale Brenneman, McCabe's VP of Software Quality Solutions. "Unlike other software security tools, McCabe IQ provides thorough structural analysis and visualization as the foundation upon which security analysis and verification can confidently be performed."

McCabe IQ leverages and integrates information from several disciplines in order to produce its analysis. By combining structural analysis, quality analysis, and security analysis, McCabe IQ provides unique insight into the security vulnerabilities within a codebase.

The vulnerability of software depends on the structural characteristics of the source code. Using the industry-proven McCabe Basis Path structured testing methodology, an analyst is able to determine which potential vulnerabilities may be reachable, and therefore exploitable, along code paths. This methodology can also help increase the effectiveness of your security testing by using path coverage and visualization.

About Microsoft SDL Pro Network
The Microsoft SDL Pro Network is a group of security consultants, training companies, and tool providers that specialize in application security and have substantial experience and expertise with the methodology and technologies of the SDL. For more info go to: http://www.microsoft.com/security/sdl/getstarted/pronetwork.aspx .

About McCabe Software, Inc.
McCabe Software provides Software Quality Management and Software Configuration Management solutions worldwide. "McCabe IQ" is used to analyze and visualize the security, quality, and testing of mission, life, and business critical applications. McCabe Software has offices in the United States and distribution worldwide. For more info go to: http://security.mccabe.com .

###

Share article on social media or email:

View article via:

Pdf Print

Contact Author

Jon Palmisano
Visit website

Media