Name: How to Validate DO-326A Airworthiness Security Requirements
Start: 2022-03-03T17:00:00Z
End: 2022-03-03T17:44:04.000Z
Location: BrightTALK
Rating: 5

The innovation you need. The experience you trust. From development to QA, Parasoft’s comprehensive suite of software testing solutions reduces the time, effort, and cost of delivering secure, reliable, and compliant software. Leverage our AI-infused suite of automated testing tools to drive continuous quality practices throughout your development pipeline.

Whether you’re just getting started with Selenium or an expert looking to optimize your Selenium testing practice, you're likely to face some common problems. To name a few: test instabilities caused by ever-changing elements, long execution times, and brittle scripts that are difficult to maintain. These can lead to a lot of test rework, reduced DevOps pipeline velocity, and ultimately delayed releases. 

To easily mitigate these challenges, integrate AI and machine learning into the CI/CD pipeline to ramp up and scale Selenium tests to be more manageable. In this session, discover how to: 

* Use manual UI recording to quickly create Java-based page object model scripts. 
* Leverage on-the-fly self-healing during test execution to avoid runtime failures. 
* Reduce test execution time by only running the tests that are impacted by changes. 
* Achieve requirements traceability with your automated test results. 
* Increase test coverage with automated generation of end-to-end API test scenarios.

Fuse AI Into the CI/CD Pipeline to Optimize Selenium Testing

Are you ready to speed up your application testing? Test automation gets you partway there, but artificial intelligence (AI) takes it to the next level. With the right testing tools, you can simplify the process and focus on identifying and remediating the quality issues in your software. 

Smart test execution with test impact analysis leverages AI and machine learning (ML) to selectively target only changed code and run just those tests. You save time and effort — and get quicker feedback. Whether you’re doing unit, API, or UI testing, the Parasoft Continuous Quality Platform accelerates the execution of automated tests.

Join this session to see how your team can get testing done faster. 
• Associate tests to requirements and code to see the impact of changes. 
• Identify which subset of tests you need to run for validating modified code. 
• Get faster feedback within CI/CD to find and fix potential issues.

Find & Fix Defects Faster With AI-Enhanced Test Automation

How are you validating your application functionality? Modern rapid software development relies heavily on the availability of development and test environments. Your DevOps team might use approaches like service stubbing and mocking to stabilize and provision environments that have external dependencies.  

The challenge as distributed systems become more complex is that stubs and mocks can't keep up with the logic and functional requirements of their real counterparts. By enhancing simulated components with stateful behavior, persistent data, and intelligent correlations, service virtualization unlocks significant ROI. And your DevOps team can achieve higher levels of software quality earlier in the release cycle. 

In this session you'll learn to:  
- Tell apart different types of stateful service behavior. 
- Use AI to create complex virtual services rapidly. 
- Enable teams to deploy simulated systems and sandboxes on demand.

How to Unlock Significant ROI by Simplifying Application Development

Structural coverage is the identification of code that has been executed and logged. There are several reasons why it's important to perform this activity for embedded safety- and security-critical systems. One is to determine if the software has been adequately tested. Another is to satisfy compliance and certification requirements. You might also want to ensure there's no dead code in your software.   

In this webinar, we'll dive into answers to valuable questions.  
• How do you decide the code structural thoroughness of the coverage?  
• How much coverage should you achieve?  
• What's the best way to satisfy this task?  
• What to do when you need to combine coverage from third-party libraries or perform code coverage on target hardware?  
• What action should you take when instrumentation causes excessive code bloat?  
• What should you do if you have to perform code coverage at the assembly language level?  

Join this webinar to learn best practices, ask the experts, and see a live demo. We'll show you structural code coverage for statement, branch, and MC/DC along with automated reporting and metrics for code coverage and code complexity.

Everything You Need to Know About Structural Code Coverage for C & C++

Getting your application ready for release is a team effort. As a software development manager, you need to ensure that team members can work productively without any hurdles blocking the path.  

To reach your team goals, you need an easy way to collect and consume a wide range of test and coverage data across testing practices so you can monitor progress and identify areas of exposure that need to be prioritized. By reviewing this information on a regular basis during your sprints, you can recognize potential issues or gaps, assess the level of urgency, and make decisions about what to include in the next sprint. 

In this session, you’ll learn how to: 
• Identify potential software quality, performance, or security issues using key metrics for each sprint and each release. 
• Balance quality and agility for testing priorities through test and code coverage gap analysis. 
• Create measurable and achievable policies that govern your ability to achieve in-sprint testing goals.

Sprint Through Software Development With Quality Metrics

Don’t let high volume catch you by surprise! If your software hasn’t been tested lately to ensure it can handle heavy loads and unusual conditions, like system failures during holiday storms, you could be headed for a meltdown that negatively impacts your customers and your organization’s reputation.  

To ensure your systems can survive seasonal stress, modernize your application stack and testing processes to improve software quality. Integrate techniques such as performance and security testing and shift them left in the development workflow to identify and address potential risks earlier. 

Join this discussion to hear about: 
• Where you should invest in modernizing your application stack. 
• Why you need continuous testing to prevent meltdowns. 
• How service virtualization enables performance testing and solves test data challenges.  
• How to define security testing policies for handling large traffic.

Invest in Software Quality to Avoid a #Meltdown

Panel Discussion with exida experts
Getting a product through the functional safety certification process can seem as daunting as crossing the Rocky Mountains on foot in a snow squall. But with the right guide and tools, you can reach your final destination with less effort and minimal pain.   

Implementing cost-effective processes and achieving compliance with safety and security standards requires learning best practices and putting them in place. By focusing on process, design, and tool improvements, teams can: 
        • Deliver safe and secure products.  
        • Save money.  
        • Reduce time to market through earlier verification of quality and better documentation. 

Join this discussion to hear from the experts at exida on how to achieve high-impact, cost-effective solutions for your functional safety and IACS cybersecurity challenges.

About: 
exida provides resources, tools, coaching, and training to help you rapidly develop knowledge of how to best comply with functional safety and cybersecurity standards and integrate these standards into your current development lifecycle. exida offers a full range of lifecycle services to supplement in-house resources and provide independent assessments to ensure compliance and traceability.
 
Parasoft helps organizations deliver quality software at scale with automated testing solutions that span every stage of the software development cycle. From embedded safety-and security-critical applications to cloud, UI, and API testing, ensuring compliance and code quality with functional safety tool qualification requirements.

Crossing the Great Divide of Functional Safety Product Certification

Many software developers will agree that, although unit testing is extremely valuable to help find and fix issues in code, it’s time intensive and tedious to design and maintain useful unit tests to cover the entire application. Test automation enables you to save time and effort creating and maintaining meaningful JUnit tests, gain a better understanding of test coverage, and deliver a high-quality application that meets expectations. 

In this technical session, we’ll demonstrate the benefits of unit testing and show you how to capture and centralize JUnit test execution and coverage results within the CI/CD pipeline across the organization.

Learn how to: 
• Quickly create JUnit tests with mocks and assertions to improve code quality and increase code coverage. 
• Identify coverage gaps and analyze key metrics such as modified code coverage to evaluate the business impact and risk. 
• Obtain near-instant feedback to mitigate code changes in the CI/CD pipeline using test impact analysis (TIA).

Save Time & Improve Quality on the Fast Path for JUnit Testing

A collaborative culture within organizations has been proven to streamline the product development process. It places value on effective communication, integration, and cross-functional teamwork to enable continuous and rapid delivery of reliable products that are also safe and secure.   

Adopting an approach like Agile, which gets applied through methodologies like DevOps, brings teams together for shared ownership, workflow automation, and rapid feedback. All this is then realized through a CI/CD pipeline.   

Join this webinar to see how your embedded software development team can adopt a modern, highly automated workflow to achieve continuous integration, continuous testing, continuous delivery/deployment, and continuous monitoring of software applications throughout the development life cycle. You'll also get the opportunity to see a demo of Parasoft in action in a GitLab CI pipeline. 

Key takeaways: 
• The high value of adopting a modern development workflow 
• Continuous testing: static analysis, unit testing, & code coverage 
• Best practices in applying test automation

Must-Haves in CI/CD Software Development for Embedded

Panelists: Roya Montazeri - Senior Director of Quality Assurance - Cox Automotive , Hirakant Shet, Director Software Engineering - PSCU,  Arthur Hicken, Chief Evangelist, Nathan Jakubiak, Senior. Director of Development, & Daniel Garay, Senior QA Director - Parasoft

How has your organization invested in test automation to optimize software testing? Many companies still struggle to make that important step for delivering high-quality applications to their users. What’s holding them back, and what’s the impact of not choosing to integrate testing into their DevOps workflow? 

Test automation has evolved with AI and ML to meet the increasing needs for development and QA teams, so that they can take advantage of automating the right testing practices for their application. Automation won’t replace your testers, but it will help them work more efficiently, which directly impacts your bottom-line ROI. 

Join this lively panel discussion to ask questions and learn about: 
• Why test automation matters now more than ever for improving software quality. 
• What you should consider when evaluating investment options. 
• How to understand and calculate test automation value for your organization.

Why You Should Invest in Software Test Automation

A collaborative culture within organizations has been proven to streamline the product development process. It places value on effective communication, integration, and cross-functional teamwork to enable continuous and rapid delivery of reliable products that are also safe and secure.

Adopting an approach like Agile, which gets applied through methodologies like DevOps, brings teams together for shared ownership, workflow automation, and rapid feedback. All this is then realized through a CI/CD pipeline.

Join this webinar to see how your embedded software development team can adopt a modern, highly automated workflow to achieve continuous integration, testing, delivery/deployment, and monitoring of software applications throughout the development life cycle. You'll get the opportunity to see a demo of Parasoft in action in a GitHub CI pipeline.

Key Takeaways
• The high value of adopting a modern development workflow 
• Continuous testing: static analysis, unit testing, and code coverage 
• Best practices for applying test automation

How to Use GitHub and Static Analysis in Your CI/CD Pipeline

Does your DevOps SDLC provide you with early visibility to security practices and readiness so you can deliver with confidence? Security testing, such as SAST and DAST, is often left to the end of a software development life cycle, which increases the risk of issues impacting the application release. In today’s world, security testing needs to occur in parallel with application development and be easy enough that your developers don’t have to become security experts.  

Ensure that your development team is following best practices to build secure applications with compliance reporting for secure coding standards like CWE, DISA ASD STIG, OWASP, and CERT. Identify potential API security risks for OWASP API Security Top 10 with automated DAST reporting. Get visibility and insights into your application development security compliance and increase confidence in software deliveries by integrating AI/ML-augmented security testing into your development workflow. 

Learn how to: 
• Assess existing application security compliance practices and determine how they relate to industry standards. 
• Enable security in your DevOps workflows with targeted SAST that aligns with your DAST. 
• Gain visibility into secure coding compliance and quality status with dashboards and reports to mitigate risk.

It’s 10 PM. Do You Know if Your Application Is Secure?

How do you determine what application testing needs to be done manually and how much should be automated? As DevOps teams face increasing challenges to get more done in less time, they're looking for ways to create tests faster, maintain them more easily, and execute them more efficiently. The solution? Optimize workflows with AI and CI/CD. 

Infusing AI into modern development workflows for software testing drives developer and tester productivity to a higher level. Join this session to learn about testing trends and see the many ways that teams are using AI to automate functional and nonfunctional testing to be more productive. 

Learn how: 
• AI enables functional test creation across multiple levels. 
• Test impact analysis accelerates test execution. 
• API test suites can be reused for nonfunctional testing such as security and performance.

Take Software Testing to the Next Level With AI

Do you want to incorporate the next-level safety and security coding guidelines to satisfy compliance requirements for the recently released MISRA C:2012 AMD 3? Coding guidelines from MISRA are essential to developing today's advanced safety-critical systems. They help teams efficiently eliminate risky code constructs that lead to unpredictable program behavior, safety hazards, and security vulnerabilities. 

Join this webinar to get the most up-to-date MISRA news and insights directly from a Parasoft member of the MISRA C and MISRA C++ working group. Parasoft provides the industry's top software suppliers with the broadest coverage for MISRA. Our team is committed to helping customers stay ahead of the rapidly-evolving threat landscape.  

Discover the value of performing static analysis using MISRA C:2012 AMD 3 for the safe and secure development of embedded real-time software. Here's what else we'll cover:

• Review of amendments and technical corrigendums 
• What's new in MISRA C:2012 AMD 3? 
• Why adopting MISRA is essential for your organization. 
• Demo showing how to apply MISRA C:2012 in the CI/CD pipeline.

MISRA C:2012 Amendment 3: What You Need to Know

Everyone wants high-quality software, but you can’t test quality into an application. You need a quality-driven approach that spans development and testing with an integrated strategy for your DevOps workflow. It's more critical than ever for DevOps teams to implement fully automated continuous testing and leverage artificial intelligence (AI) and machine learning (ML) to efficiently achieve higher levels of test automation. 

Parasoft has optimized our automated testing tools with innovative AI and ML features to accelerate test creation, maintenance, and execution. In this session, you'll see how to: 
• Leverage AI/ML to quickly create UI and API test suites to validate functionality.
• Translate user requirements into API tests, correlated for traceability and coverage. 
• Shift left even more by leveraging API tests for load and performance testing.

AI Innovations That Improve Software Quality

RTCA DO-326A, Airworthiness Security Process Specification, is the industry standard for cybersecurity in aircrafts. The standard gives guidance for assessing security risks during the development process. The airworthiness security process starts with requirements and adherence to those requirements throughout the entire SDLC, and ultimately ensures compliance through verification and validation methods.

Methods like building a requirements traceability matrix help identify any security gaps and vulnerabilities in design, architecture, and implementation. Testing technologies like static analysis, unit testing, code coverage, and code reviews, ensure that security requirements are being satisfied and contribute to the evaluation of security effectiveness and risk.  

Learn how to: 
• Apply safety requirements management methods for security. 
• Shift left security testing (SAST, DAST). 
• Integrate DevSecOps into your development workflow

How to Validate DO-326A Airworthiness Security Requirements

DO-325A

Risk Assessment

Security

Compliance

Compliance Testing

Requirements Traceability

static analysis

unit testing

code coverage

DevSecOps

Welcome to the virtualization community on BrightTALK! Whether it affects servers, storage, networks, desktops or other parts of the data center, virtualization provides real benefits by reducing the resources needed for your
infrastructure and creating software-defined data center components. However, it can also complicate your infrastructure. Join this active community to learn best
practices for avoiding virtual machine sprawl and other common virtualization pitfalls as well as how you can make the most of your virtualization environment.

Virtualization

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The application development community features top thought leadership focusing on optimal practices in software development, SDLC methodology, mobile app development and application development platforms and tools. Join top software engineers and coders as they cover emerging trends in everything from enterprise app development to developing for mobile platforms such as Android and iOS.

Application Development

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Get powerful insights to run your business. CEOs, CFOs, CMOs, COOs, CTOs and CIOs are among the leaders in this community who connect with peers and experts to grow their businesses.

CxO Strategy

In the business management community, commercial experts will be sharing webinars and videos on an array of subjects. From sales and marketing, to finance, productivity and growth, this content will help you stay up-to-date with the current economic environment and provide timely management insight to drive business growth.

How to Validate DO-326A Airworthiness Security Requirements

Presented by

About this talk

More from this channel