Binaries - The Hidden Side of Software Composition Analysis (SCA)

Logo
Presented by

Sandy Carielli, Principal Analyst at Forrester & Vince Arneja, CPO at GrammaTech

About this talk

"The Hidden Side of Software Composition Analysis (SCA) – When Source Code is Unavailable" Many SCA solutions require source code for their bill-of-materials and vulnerability analysis. However, source code is not always available for much of the supply chain you use in your applications. This third-party content is often delivered as binaries and includes re-used open source or commercial components, many of which have known vulnerabilities that may be unknown to you. Getting a complete software bill-of-materials to fully understand your security exposure is becoming critical. In this on demand webinar: • Learn how these hidden vulnerabilities can cause major security headaches • Discover a new class of SCA products have emerged to meet this challenge • Hear success stories from GrammaTech and best practices from Forrester on how to implement binary SCA
Related topics:

More from this channel

Upcoming talks (2)
On-demand talks (36)
Subscribers (2052)
CodeSecure is a global provider of application security testing solutions including static analysis (SAST) and software composition (SCA) products. Our products, CodeSonar and CodeSentry, help organizations develop and release higher quality and more secure software – free of harmful defects and exploitable weaknesses that cause system failures, enable data breaches, and increase corporate liability.