IBM Security AppScan Source Technical Overview by E-SPIN

Identify and fix vulnerabilities in web and mobile applications prior to deployment

IBM® Security AppScan® Source delivers maximum value to every user in your organization who plays a role in software security. Whether a security analyst, quality assurance professional, developer, or executive, the AppScan Source products deliver the functionality, flexibility, and power you need – right to your desktop.

Helps organizations lower costs and reduce risk exposure

IBM Security AppScan Source helps organizations lower costs and reduce risk exposure by identifying web-based and mobile application source code vulnerabilities early in the software development lifecycle so they can be fixed before deployment. AppScan Source integrates cognitive capabilities such as Intelligent Finding Analytics (IFA) into your software development lifecycle, decreasing the time and effort required to identify and remediate vulnerabilities.

The product set includes:

• AppScan Source for Analysis: Workbench to configure applications and projects, scan code, analyze, triage, and take action on priority vulnerabilities.
• AppScan Source for Automation: Allows you to automate key aspects of the AppScan Source workflow and integrate security with build environments during the software development life cycle.
• AppScan Source for Development: Developer plug-ins integrate many AppScan Source for Analysis features into Microsoft Visual Studio, the Eclipse workbench, and Rational® Application Developer for WebSphere® Software (RAD). This allows software developers to find and take action on vulnerabilities during the development process. The Eclipse plug-in allows you to scan source code for security vulnerabilities – and you can scan IBM MobileFirst Platform projects with the Eclipse plug-in.

Drive down costs

• Identifies web-based and mobile application source code vulnerabilities early in the software development lifecycle, so they can be fixed before deployment.

Save time

• Reduce false positives by up to 98%, alleviating the need for security experts to review findings for false positives before sending them to developers.

Reduce risk

• Builds automated security into development by integrating security source code analysis with automated scanning during the build process.

Key features of AppScan Source

• Stronger, more cost-effective application security solution
• Improved intelligence through integration
• Reduced time and effort with Intelligent Finding Analytics
• Security best practices through centralized management
• Enhanced reporting, governance and compliance capabilities

This video is about IBM Security AppScan Source Technical Overview by E-SPIN

For those who can not join us for the session, please see the summary and highlight clip for the event.

If you have any inquiry or questions, feel free to contact E-SPIN for solution, product and project requirements.