Channels ▼
RSS

Jolt Awards

2006 Jolt Awards


Security Tools

Elemental Compliance System 1.4
Elemental (www.elementalsecurity.com)

Elemental's Richard Hornstein

Elemental's Richard Hornstein

Are your security policies deployed in technical-spec terms of ports, protocols, and IP addresses? Are they hard to read and adapt to new network devices and configurations? The Elemental Compliance Policy Language changes this by letting users express, monitor, and enforce security policies in business-friendly ways. The system then observes broadcast traffic and evaluates security issues. Similarly, the Elemental Compliance System identifies and restricts network access for hosts and users that are noncompliant with critical security policies.

Elemental's software keeps up with the continuous change by dynamically classifying groups of hosts based on hundreds of attributes. With more than 1500 included policies derived from security best practices of leading organizations, administrators can get a quick start using these or create their own custom policies.

—Roland Racko

Productivity Award Winners

CodeAssure 2.0
Secure Software (securesoftware.com)

Static analysis of code bases is a critically important facet of software development—and few companies offer a more accurate and thorough tool for analyzing C and Java code than Secure Software. CodeAssure is among the best at identifying security holes and recognizing dubious constructs, making it particularly attractive to enterprises—the very companies that have the most to lose in the event of security breaches.

—Andrew Binstock

DevPartner SecurityChecker 1.0
Compuware (compuware.com)

Compuware's DevPartner SecurityChecker 1.0 is a commendable first attempt at a tool that offers comprehensive code security analysis for .NET code. Even though this first release suffers from 1.0 feature limitations, its stellar compile-time, runtime, and integrity security code violation checking and reporting make it a valuable investment for any security conscious enterprise.

—Mike Riley

Fortify Security Tester 1.0
Fortify (fortifysoftware.com)

The Fortify Security Tester is an excellent security analysis and QA tool for ASP.NET web application developers. It automatically generates tests to cover potential security vulnerabilities based on use cases, which are either automatically generated by a web crawler or recorded by Fortify when you go through the web application. The Fortify tests cover areas like SQL injection, XPath injection, and cross-site scripting.

—Michael Yuan


Related Reading


More Insights






Currently we allow the following HTML tags in comments:

Single tags

These tags can be used alone and don't need an ending tag.

<br> Defines a single line break

<hr> Defines a horizontal line

Matching tags

These require an ending tag - e.g. <i>italic text</i>

<a> Defines an anchor

<b> Defines bold text

<big> Defines big text

<blockquote> Defines a long quotation

<caption> Defines a table caption

<cite> Defines a citation

<code> Defines computer code text

<em> Defines emphasized text

<fieldset> Defines a border around elements in a form

<h1> This is heading 1

<h2> This is heading 2

<h3> This is heading 3

<h4> This is heading 4

<h5> This is heading 5

<h6> This is heading 6

<i> Defines italic text

<p> Defines a paragraph

<pre> Defines preformatted text

<q> Defines a short quotation

<samp> Defines sample computer code text

<small> Defines small text

<span> Defines a section in a document

<s> Defines strikethrough text

<strike> Defines strikethrough text

<strong> Defines strong text

<sub> Defines subscripted text

<sup> Defines superscripted text

<u> Defines underlined text

Dr. Dobb's encourages readers to engage in spirited, healthy debate, including taking us to task. However, Dr. Dobb's moderates all comments posted to our site, and reserves the right to modify or remove any content that it determines to be derogatory, offensive, inflammatory, vulgar, irrelevant/off-topic, racist or obvious marketing or spam. Dr. Dobb's further reserves the right to disable the profile of any commenter participating in said activities.

 
Disqus Tips To upload an avatar photo, first complete your Disqus profile. | View the list of supported HTML tags you can use to style comments. | Please read our commenting policy.
 

Jolt Awards Video