Fortify Tips & Info

Video: Reducing the noise using Fortify

COEST

0 Likes

over 3 years ago

In AppSec, security scan noise is an issue that slows down fast software development. Noise is all output that is considered irrelevant or not worth acting upon by users. If there is too much noise, this can have detrimental effects on the success of implementation:

- For security auditors, they can be swamped auditing results

- If this noise ends up with developers’ directly, they may lose confidence in the tool

There are a subset of scan findings where the Fortify static scan tool worked as intended; however, the issue is considered irrelevant due to the context, risk appetite, etc. This explainer video walks through several tools within Fortify that help reduce the noise!

Tags:

appsec

videos

Fortify

Static Scan

security audit

Labels:

Videos

Comment List

Recommended

Resources

Support

Documentation

Learning Services

Partner Programs

Privacy

Compliance

Help

Company

Accessibility
Anti-Slavery Statement

Support
Contact Us

Careers
Code of Business Conduct and Ethics

The opinions expressed above are the personal opinions of the authors, not of OpenText. By using this site, you accept the Terms of Use. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.), Hewlett Packard Enterprise Company, or Micro Focus. As of January 31, 2023, the Material is now offered by OpenText, a separately owned and operated company. Any reference to the HP, Hewlett Packard Enterprise/HPE, and Micro Focus marks is historical in nature and the HP, Hewlett Packard Enterprise/HPE, and Micro Focus marks are the property of their respective owners.

Menu

Fortify Tips & Info

Video: Reducing the noise using Fortify

Tags:

Labels:

Resources