Hi Jerry, as one of the creators of the tool you evaluated, I have to admit
I have the urge to comment on your message one line at a time and explain
each way in which the presentation you attended did not adequately explain
what Fortify does or how we do it. But I don't think the rest of the
Title: RE: Comparing Scanning Tools
McGovern, James F wrote:
I have yet to find a large enterprise that has made a significant investment in such tools.
Ill give you pointers to two. Theyre two of the three largest software companies in the world.
Title: Re: [SC-L] RE: Comparing Scanning Tools
I
think I should have been more specific in my first post. I should have phrased
it as I have yet to find a large enterprise whose primary business isn't
software or technology that has made a significant investment in such
tools.
Likewise, a
Title: Re: [SC-L] RE: Comparing Scanning Tools
At the RSA Conference in February, I went to a reception
hosted by a group called "Secure Software Forum"(not to be confused with
the company Secure Software Inc, which offers a product competitive to
Fortify). They had a panel session where
At 2:32 PM -0400 6/9/06, Jeremy Epstein wrote:
Having said that, it's completely at odds compared to what I see working
for an ISV of a non-security product. That is, I almost never have
prospects/customers ask me what we do to assure our software.
I don't even get those questions for our