Comments
yourfanat wrote: I am using another tool for Oracle developers - dbForge Studio for Oracle. This IDE has lots of usefull features, among them: oracle designer, code competion and formatter, query builder, debugger, profiler, erxport/import, reports and many others. The latest version supports Oracle 12C. More information here.
Cloud Computing
Conference & Expo
November 2-4, 2009 NYC
Register Today and SAVE !..

2008 West
DIAMOND SPONSOR:
Data Direct
SOA, WOA and Cloud Computing: The New Frontier for Data Services
PLATINUM SPONSORS:
Red Hat
The Opening of Virtualization
GOLD SPONSORS:
Appsense
User Environment Management – The Third Layer of the Desktop
Cordys
Cloud Computing for Business Agility
EMC
CMIS: A Multi-Vendor Proposal for a Service-Based Content Management Interoperability Standard
Freedom OSS
Practical SOA” Max Yankelevich
Intel
Architecting an Enterprise Service Router (ESR) – A Cost-Effective Way to Scale SOA Across the Enterprise
Sensedia
Return on Assests: Bringing Visibility to your SOA Strategy
Symantec
Managing Hybrid Endpoint Environments
VMWare
Game-Changing Technology for Enterprise Clouds and Applications
Click For 2008 West
Event Webcasts

2008 West
PLATINUM SPONSORS:
Appcelerator
Get ‘Rich’ Quick: Rapid Prototyping for RIA with ZERO Server Code
Keynote Systems
Designing for and Managing Performance in the New Frontier of Rich Internet Applications
GOLD SPONSORS:
ICEsoft
How Can AJAX Improve Homeland Security?
Isomorphic
Beyond Widgets: What a RIA Platform Should Offer
Oracle
REAs: Rich Enterprise Applications
Click For 2008 Event Webcasts
In many cases, the end of the year gives you time to step back and take stock of the last 12 months. This is when many of us take a hard look at what worked and what did not, complete performance reviews, and formulate plans for the coming year. For me, it is all of those things plus a time when I u...
SYS-CON.TV
SPI Dynamics, Leader in Web Application Security Testing and Secure Source Code Development Solutions, Announces Only Web Application Security Product for Java Developers with Cooperative Source Code and Black Box Testing
SPI Dynamics Announces DevInspect(R) 3.0 with Hybrid Analysis(TM) - The First and Only Web Application Security Software for Jav

ATLANTA, Nov. 6 /PRNewswire/ -- S.P.I. Dynamics, Inc. (http://www.spidynamics.com/), the leading provider of Web application security testing software and services, announced today full support for Java developers and J2EE Web applications in DevInspect 3.0, the new version of its unique developer application security solution. DevInspect is the first and only developer security product available for the Java market with Hybrid Analysis technology - the powerful combination of source code analysis plus black box security testing - for the most accurate approach to securing Java applications. DevInspect 3.0 integrates directly into the most popular Java development environments, including Eclipse and IBM Rational Application Developer, enabling developers to secure their applications quickly and easily from their familiar work environment.

"Hybrid Analysis is the most accurate and efficient technique for writing secure source code. And developing source code securely during the construction phase of the Software Development Lifecycle is essential to a cost effective strategy for application security. We are delighted to be able to offer a secure coding framework for Java developers in the latest version of our DevInspect product," said Brian Cohen, president and CEO, SPI Dynamics. "DevInspect for Java's Hybrid Analysis combines data from source code analysis and black box testing in a cooperative process that increases accuracy over any other approach, a unique capability based upon DevInspect's architecture. The results are fundamentally different compared to the simple combination of data from separate source code analysis and black box testing tools within a single report, which only provides data points for manual validation, not better accuracy."

DevInspect for Java is available as a standalone tool or as a plug-in to the most popular Java integrated development environments, including the Eclipse platform and IBM Rational Application Developer (RAD) versions 6 and 7. DevInspect for Java also integrates with IBM Rational ClearQuest for the development team to be able to manage security defects in source code.

"The best way to ensure secure applications is to incorporate security practices during development before applications are deployed to production. Significant cost reductions and dramatic increases in security will be realized when scanners are embedded directly into SDLC platforms, thus allowing security defect detection in the earlier stages of the lifecycle." said Joseph Feiman, Research Vice President, Gartner Inc. "Even though today there are two markets - one for Web application security scanning and one for source code scanning - each with their own set of vendors, we believe that, longer term, organizations want a single solution that provides both."

SPI Dynamics' unique Hybrid Analysis technology includes a two-phased approach to pinpoint security vulnerabilities with unmatched accuracy and to dramatically reduce false positives. The source code analysis phase defines the application attack surface, identifying all application inputs and finding common security coding errors and all potential vulnerabilities. The black box testing phase uses the intelligence and data from the source code analysis to discover and verify exploitable security defects using automated attack techniques against running applications. This black box testing phase dramatically reduces false positives to yield the subset of exploitable security vulnerabilities in the application found during source code analysis, rather than a theoretical list of all potential problems that require manual review and validation. DevInspect enables developers with little or no security expertise to automatically fix vulnerabilities during development and build secure Web applications.

DevInspect for Java's distinctive source code and black box analysis approach to secure application development delivers industry best practices and facilitates security assurance collaboration between security professionals, developers and quality assurance teams. Secure development addresses the key challenge today with Web application security - the siloed approach to security that is prevalent in most organizations.

Availability

SPI Dynamics' DevInspect 3.0 for Java with Hybrid Analysis will be available December 1st. For more information, please visit http://www.spidynamics.com/, or contact SPI Dynamics at (866) 774-2700; info@spidynamics.com.

About S.P.I. Dynamics Incorporated Start Secure. Stay Secure.(R) Security Assurance Throughout the Application Lifecycle

SPI Dynamics delivers a comprehensive suite of products and services (http://www.spidynamics.com/products/index.html) that help to identify and remediate Web services and Web application security vulnerabilities found at key stages throughout the Web Application Lifecycle. SPI Dynamics solutions enable security professionals, QA testers, and developers to work together to assess, analyze, and remediate Web applications and Web services for security vulnerabilities, and verify compliance with over 20 security policies like SOX, HIPAA and PCI. The Company's unique approach utilizing patent-pending Intelligent Engines(TM) technology combined with the largest Web application security vulnerability knowledgebase in the industry delivers unparalleled speed and accuracy. SPI Dynamics' research and development team, SPI Labs, is widely recognized as one of the world's leading authorities on Web application security and risk management. The Company has over 850 customers among Global 2000 enterprises, including over 90 U.S. Federal accounts, and has strategic partnerships with Microsoft, IBM, Mercury, CSC and Visa with Visa investing in the Company in 2005. SPI Dynamics is privately held with headquarters in Atlanta, Georgia. For more information on Web application security, visit http://www.spidynamics.com/ or call (866) 774-2700.

DevInspect and Start Secure. Stay Secure. are registered trademarks, and Hybrid Analysis and Intelligent Engines are trademarks of S.P.I. Dynamics, Inc. Product or service names mentioned herein are the trademarks of their respective owners.

S.P.I. Dynamics Incorporated

CONTACT: Ashley Vandiver of SPI Dynamics, +1-678-781-4841, or cell
+1-404-432-8657, or avandiver@spidynamics.com, or Michelle Schafer of Merritt
Group, +1-703-390-1525, or cell +1-703-403-6377, or schafer@merrittgrp.com,
for SPI Dynamics

Web site: http://www.spidynamics.com/
http://www.spidynamics.com/products/index.html

About PR Newswire
Copyright © 2007 PR Newswire. All rights reserved. Republication or redistribution of PRNewswire content is expressly prohibited without the prior written consent of PRNewswire. PRNewswire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

SOA World Latest Stories
In his general session at 19th Cloud Expo, Manish Dixit, VP of Product and Engineering at Dice, discussed how Dice leverages data insights and tools to help both tech professionals and recruiters better understand how skills relate to each other and which skills are in high demand usin...
When building large, cloud-based applications that operate at a high scale, it’s important to maintain a high availability and resilience to failures. In order to do that, you must be tolerant of failures, even in light of failures in other areas of your application. “Fly two mistakes ...
Lori MacVittie is a subject matter expert on emerging technology responsible for outbound evangelism across F5's entire product suite. MacVittie has extensive development and technical architecture experience in both high-tech and enterprise organizations, in addition to network and sy...
Containers and Kubernetes allow for code portability across on-premise VMs, bare metal, or multiple cloud provider environments. Yet, despite this portability promise, developers may include configuration and application definitions that constrain or even eliminate application portabil...
Modern software design has fundamentally changed how we manage applications, causing many to turn to containers as the new virtual machine for resource management. As container adoption grows beyond stateless applications to stateful workloads, the need for persistent storage is founda...
Using new techniques of information modeling, indexing, and processing, new cloud-based systems can support cloud-based workloads previously not possible for high-throughput insurance, banking, and case-based applications. In his session at 18th Cloud Expo, John Newton, CTO, Founder an...
Subscribe to the World's Most Powerful Newsletters
Subscribe to Our Rss Feeds & Get Your SYS-CON News Live!
Click to Add our RSS Feeds to the Service of Your Choice:
Google Reader or Homepage Add to My Yahoo! Subscribe with Bloglines Subscribe in NewsGator Online
myFeedster Add to My AOL Subscribe in Rojo Add 'Hugg' to Newsburst from CNET News.com Kinja Digest View Additional SYS-CON Feeds
Publish Your Article! Please send it to editorial(at)sys-con.com!

Advertise on this site! Contact advertising(at)sys-con.com! 201 802-3021


SYS-CON Featured Whitepapers
Most Read This Week
ADS BY GOOGLE