OpenText has unveiled the second generation of its application security auditing tool, Fortify Audit Assistant. Fortify Audit Assistant aims to address the challenges faced by developers confronted with an increasingly complex landscape of cloud threats.
“The first generation of Fortify Audit Assistant was well ahead of its time with its use of predictive analytics and machine learning,” said Prentiss Donohue, cybersecurity executive vice president at OpenText.
“Those pioneering efforts paved the way for us to derive 10 years of data from human experts and turn them into predictive models that are significantly more accurate compared to the previous generation’s models, improving efficacy in auditing by reducing false positives up to 90%. Enterprises can now leverage this depth of information—something no one else in the industry can provide—within their own software assurance programs”, he added.
With this technology, OpenText highlights the need for advanced application security tools and practices, addressing the pressure security teams face to ensure software integrity and reliability from the start.
Key updates to Fortify Audit Assistant include the ability to account for model shifts, the flexibility to learn from a company’s unique environment, expanded model expertise through language specification, and the ability to account for nuances of scan results.
The tool also aims to streamline developers’ work by allowing them to focus on addressing the most critical vulnerabilities.
According to OpenText, the advanced auditing process is a direct response to requirements for more efficient application security testing, which is too time-consuming and requires manual processing of static analysis results.
The new generation of Fortify Audit Assistant will integrate security considerations into the earliest stages of the software development lifecycle, starting right from code creation. This will help in building software systems that are not only robust and reliable, but also inherently secure.
The tool uses machine learning technology to automate the security audit process, learning from the experience of Fortify’s human auditors. This application of AI is being identified as a strategic move to address the shortage of expertise available for manual verification, which is resource intensive and impractical for many organizations.
Fortify Audit Assistant promises to significantly reduce the overhead associated with hiring teams of software engineering, computer science and cybersecurity experts, the company explains.
Read more:
1. Allen AI Institute Launches Fully Open Large Language Model
2. From Harvard Students to Users Around the World: Facebook turns 20
3. How to Invest our Money if we are Beginners?
