BURLINGTON, Mass. -- Veracode Inc., provider of the industrys first on-demand application security review, today announces the launch of the Zero in a Bit blog, an online resource to aid software developers, CSOs, and technology and business leaders who are responsible for delivering secure software and ensuring that critical data and private information is protected. With a leading analyst firm predicting that seventy-five percent of all new attacks will be targeted at the application layer and ninety percent of all vulnerabilities are found in software, this online resource will provide on-going analysis of the latest security vulnerabilities and their impact to businesses.
Contributing to Veracodes Zero in a Bit blog will be security industry experts, Chris Wysopal, Christien Rioux, Chris Eng, as well as other Veracode authors and guest bloggers. These application security experts will offer high-level perspectives on security issues and the latest information regarding Web site vulnerabilities. The goal of the blog is to provide a forum where an interactive exchange of ideas can take place.
A leading authority on security, Chris Wysopal has testified in front of the U.S. Congress on vulnerability research and responsibility of vulnerability disclosure. He will be joined by Christien Rioux who brings his computer programming and software engineering experience on a wide range of platforms for various companies, including financial institutions, mechanical engineering firms, educational institutions and multimedia groups. Additionally Chris Eng, who directs the internal research of Veracode's Application Security Research Lab, will contribute his consulting experience in the computer security industry to the blog and will be able to discuss industry trends the Company is seeing in the market. Veracode hopes that the material offered on the blog will stimulate discussions between the contributors and readers, creating an open forum that security professionals and industry watchers can participate in and learn from.
Application security is a challenging topic for traditional security practitioners and software developers. Although many of the vulnerability categories are not new, the risk they pose to individuals and companies in a Web 2.0 connected World are new, said Chris Wysopal, co-founder and CTO of Veracode. By blogging about the topic of software vulnerabilities and related topics we will provide a forum to start collectively discussing the issues surrounding software assurance and offer participants a venue to share their expertise, as well as learn from others in the community."