A web search on “code security definition” will likely yield a result like this: the process of writing computer code aligned with the software industry’s best security practices. Fair enough, but what are these fabled “best practices?” Better still, how can developers even know how well they measure up to this standard? An underappreciated report…
Continue ReadingDevelopers
What Is Secure Programming? Learn the Basics
Deadlines are the dedicated programmer’s enemy, but they are a reality of the web development craft. In pursuing timely project turnovers, programmers must use open-source software to maintain efficiency and meet corporate projections. While OSS is a valuable tool in application building, the integration of open-source code presents security risks or vulnerabilities. Even without…
Continue Reading
What Is the Most Secure Programming Language?
A day rarely passes without a headline announcing a new ransomware demand or security breach. With that fact, it’s no surprise that professional programmers ask, “What is the most secure programming language?” There is no one-size-fits-all solution, but a look at the current language landscape can guide an organization’s near-term strategy. The Benchmarks: No Easy…
Continue Reading
Why Open Source Scanning Is a Necessity for Your Business
In 2019, companies reported losses of over $2 trillion resulting from cybercrime, making it one of the leading concerns in every industry. Unfortunately, most of the losses involved small businesses, bringing the concern of limited resources to the table. While larger organizations — even those with little expertise — have budgets permitting the onboarding of…
Continue Reading
Which One Is Better: Scala vs Kotlin
Although JavaScript is still the most widely used programming language, there are other notable languages to consider; Scala and Kotlin are two. Scala vs. Kotlin? Each language has its strengths and weaknesses, which will be addressed here. What Is Scala? Scala (scalable language) was introduced in 2003. It is a statically-typed high-level language that generates…
Continue Reading
Comparing Clojure vs Scala
As two of the most popular functional programming languages, Clojure and Scala help programmers create structures and operational elements within designed programs. Because both languages can perform functional programming paradigms, they are considered helpful in developing commercial software. Both programming languages are referred to as JVM languages because they can each run on the Java…
Continue Reading
Choosing the Right SCA Tool for Your Company
Software composition analysis is an essential piece of web development and application security. The growing dependency on such tools has created a crowded and competitive market niche, making it challenging for companies to select the right tool for their business. As an organization weighs the different features and capabilities of available tools, it must determine…
Continue Reading
Adding DAST to the Software Security Mix
The speed of software development is accelerating. The integration of software development and operations–DevOps–made it possible and desirable for teams to write code, commit, merge and deploy code as fast as possible. No more waiting for major releases or patches: let’s get the features out into the world in as close to real time as…
Continue Reading
OpenJDK vs Oracle JDK
Entering its third decade, the popular Java programming language sails in a sea of question marks. With the OpenJDK vs Oracle JDK controversy roiling, developers now wonder where to place their bets. To navigate this challenge, it is instructive to learn how Java’s past may shape its future. Java: Sun Micro Brews a Software Success…
Continue Reading
Is Docker Secure?
Docker is a well-known open source container platform used for development and production worldwide. Approximately 13 million developers download 13 billion container images each month. This technology allows developers to write fully executable software packaged with everything needed to run it, from the code to system tools, runtime libraries, and settings. That means that from…
Continue Reading