industry news
Subscribe to EE Journal Daily Newsletter
3 + 4 =

Independent Research Firm Names Synopsys a Leader in Static Application Security Testing

The Synopsys Static Analysis (Coverity) Solution Ranks Highest in Current Offering and Strategy Categories

MOUNTAIN VIEW, Calif., Dec. 12, 2017 /PRNewswire/ — Synopsys, Inc. (Nasdaq: SNPS) today announced it has been positioned as a leader in The Forrester Wave™: Static Application Security Testing, Q4 2017. The reportprovides an in-depth analysis evaluating the 10 most significant vendors in static application security testing (SAST). The Synopsys Static Analysis (Coverity®) solution received the highest scores in the current offering and strategy categories. Within the current offering category, Synopsys also received the highest scores in the criteria of rule management and software development life cycle (SDLC) integration.

“We’re proud to have Forrester recognize Synopsys as a leader in SAST,” said Andreas Kuehlmann, general manager of the Synopsys Software Integrity Group. “As the foundational component of our Software Integrity Platform, the Synopsys Static Analysis solution has not only continued to deliver the value customers expect from an enterprise SAST tool— but it has also evolved to address emerging trends in software like the shift to more rapid and iterative development workflows and the increasingly diverse ecosystem of programming languages, frameworks, and toolchains.”

According to the Forrester Wave report, “Synopsys provides SAST scanning capabilities for use early in the SDLC. Synopsys Static Analysis (formerly Synopsys Coverity) is the company’s traditional SAST scanning tool, and SecureAssist provides on-the-fly scanning inside the IDE. Synopsys Static Analysis helps users view the impact of rule changes by displaying a comparison of results before and after the change without requiring a new scan… Synopsys Static Analysis stands out for its strong rule management and SDLC integration.”

The Forrester Wave report also states, “Security pros need SAST tools to enable developers.  Companies have traditionally used SAST tools late in the software development life cycle (SDLC) to scan products for vulnerabilities in proprietary code. Now, SAST vendors are trying to serve new users as security pros demand that their products give developers early remediation advice throughout the SDLC.”

The Synopsys Static Analysis solution, a core component of the Synopsys Software Integrity Platform, has a strong legacy as a development tool for reducing risk and lowering overall project cost by identifying critical defects and security vulnerabilities early in the SDLC. In addition to its accurate and actionable analysis, the Synopsys Static Analysis solution is optimized for use in DevOps environments and CI/CD workflows, with strong integration support for a wide range of development tools.

Download a complimentary copy of the report: The Forrester Wave™: Static Application Security Testing, Q4 2017.

Additional resources

About the Synopsys Software Integrity Platform

Synopsys offers the most comprehensive solution for building integrity —security and quality— into the software development lifecycle and supply chain. The Software Integrity Platform unites leading testing technologies, automated analysis, and experts to create a robust portfolio of products and services. This portfolio enables companies to develop personalized programs for detecting and remediating defects and vulnerabilities early in the development process, minimizing risk and maximizing productivity. Synopsys, a recognized leader in Application Security Testing (AST), is uniquely positioned to adapt and apply best practices to new technologies and trends such as IoT, DevOps, CI/CD, and the Cloud. For more information, go to www.synopsys.com/software.

About Synopsys

Synopsys, Inc. (Nasdaq: SNPS) is the Silicon to Software™ partner for innovative companies developing the electronic products and software applications we rely on every day. As the world’s 15th largest software company, Synopsys has a long history of being a global leader in electronic design automation (EDA) and semiconductor IP and is also growing its leadership in software security and quality solutions. Whether you’re a system-on-chip (SoC) designer creating advanced semiconductors, or a software developer writing applications that require the highest security and quality, Synopsys has the solutions needed to deliver innovative, high-quality, secure products. Learn more at www.synopsys.com.

Leave a Reply

featured blogs
Jan 15, 2018
It was CES last week. Generally, this is not an event about mobile, mainly because the big show for that industry is Mobile World Congress (MWC), which takes place in Barcelona a month or so later. For the last couple of years, I have attended and written about it. This year,...
Jan 12, 2018
Wow. What a fun year for Samtec.com and the entire team behind it! In 2017, we streamlined your online sampling experience, brought you a way to view detailed information about any of our trillions of part numbers, built an entirely new on-site search, upgraded to Azure CDN a...
Jan 5, 2018
When visitors to CES 2018 want to travel to the Las Vegas Convention Center across town, it will likely be in a fully autonomous vehicle from Lyft getting them there. While this futurist trip will certainly be a first for many riders, this type of point-to-point travel will s...
Jan 10, 2018
Recently, Electronics Products Magazine announced their 42nd Annual Product of the Year award winners, with Cadence Design Systems winning for their Virtuoso® System Design Platform. According to the article, the editors “have chosen [products] they......
Jan 15, 2018
This is the seventh in a series of blog posts showcasing the winning designs from the 27th Annual PCB Technology Leadership Awards. The 1st place winner in the Telecom, Network Controllers & Line Cards  category is Altice Labs, Portugal. This Switching Matrix card is a...