NORTHPORT, NY, June 20, 2012 – The Secure Decisions Division of Applied Visions, Inc. will be presenting their newly developed software assurance visualization technology, “Code Dx”, at the Software Assurance Working Group Summer Session on June 28, 2012 at MITRE-1, 7525 Colshire Drive, McLean, VA.
The presentation will describe two related Department of Homeland Security (DHS) Science & Technology (S&T) initiatives — Code Dx and TOIF — aimed at using multiple security analysis tools to increase identification and coverage of software weaknesses. KDM Analytics’ Tool Output Integration Framework, “TOIF”, is an open-source standard-based framework for integrating and normalizing code weaknesses reported by multiple detection tools (commercial and open source). Code Dx is a tool to visualize security tool findings in a single unified interface, putting them into proper context for effective triage and mitigation. This session will demonstrate the current functionality, discuss how analysts can harness the technology and provide an open forum for attendees to provide feedback and guide future Code Dx development.
Code Dx is software funded under a DHS / Science & Technology Directorate-funded cyber security Small Business Innovation Research Phase II effort to develop tools for correlating and visualizing the results from several open source and commercial software static analysis tools. Code Dx helps application security auditors and security analysts who conduct quality assurance and security audits of newly developed and legacy system Java source code to make sense of the diagnostic data produced by static source code analyzers. These analysts, as well as the software engineers developing the code, must prioritize weaknesses and diagnose source code problems that could be exploitable by cyber attackers.
The Software Assurance Program of the DHS National Cyber Security Division co-sponsors SwA Working Group Sessions with organizations in the Department of Defense and the National Institute for Standards and Technology. Held in the Summer and Winter, the SwA Working Group Sessions provide venues for public-private collaboration in advancing software assurance initiatives with status updates from the SwA Working Groups and other relevant stakeholders.
To learn more about Code Dx, go to http://securedecisions.com/research-development/software-assurance/.
About Applied Visions and Secure Decisions
Applied Visions, Inc. (AVI) provides software products, custom solutions, and advanced technology research for commercial and government customers. The company’s vision and expertise in visual software solutions for complex defense, national security, and business problems have served AVI’s customers in the Department of Homeland Security, Department of Defense, Federal Bureau of Investigation, and prominent technology and Fortune 500 firms. Founded in 1987, AVI is based in Northport, NY, and has secure facilities and clearances to support classified government programs.
Secure Decisions was launched by AVI in 2000 to focus on cyber security research and products for the government. Today, Secure Decisions is a leader in security visualization, with an established track record of R&D contracts, technology transition and product development. Secure Decisions’ products are used to enhance the situational awareness of senior officers, computer network defenders and other security professionals in government and commercial organizations. SecureScope™, VIAssist™, and MeerCAT™ are among Secure Decisions’ extensive portfolio of cyber defense solutions.
All trademarks, trade names, service marks, and logos referenced herein belong to their respective parties.