AppSec Decoded: An introduction to the Black Duck Cybersecurity Research Center | Black Duck

preview_player
Показать описание
Jonathan Knudsen, head of global research at the Black Duck Cybersecurity Research Center (CyRC), talks with Taylor Armerding, security advocate at Black Duck, about CyRC’s major annual reports, including the “Open Source Software and Risk Analysis”(OSSRA) report, which uses anonymized data from M&A audits to develop a profile of how much open source is in the software ecosystem, how organizations are using it, and whether they’re keeping it up-to-date.

▬ Contents of this video ▬▬▬▬▬▬▬▬▬▬

0:00 - Intro
1:10 - About the Cybersecurity Research Center
2:06 - CyRC's involvement in the OSSRA report
3:37 - Other CyRC projects
4:18 - About the vulnerability disclosure program
5:20 - Jonathan's role in CyRC
  1. Black Duck
  2. synopsys software integrity
  3. jenkins plugin
  4. application security
  5. software security
  6. static code analysis
Рекомендации по теме
AppSec Decoded: An 0:06:19

AppSec Decoded: An introduction to the Black Duck Cybersecurity Research Center | Black Duck

AppSec Decoded: Managing 0:08:28

AppSec Decoded: Managing your open source risks | Black Duck

AppSec Decoded: Application 0:07:47

AppSec Decoded: Application security orchestration and correlation | Black Duck

AppSec Decoded: Exploring 0:12:16

AppSec Decoded: Exploring open source trends from the 2024 OSSRA

AppSec Decoded: Continuous 0:09:08

AppSec Decoded: Continuous Dynamic

AppSec Decoded: Takeaways 0:08:18

AppSec Decoded: Takeaways from the 2022 “Software Vulnerability Snapshot”report | Black Duck

AppSec Decoded: Building 0:11:58

AppSec Decoded: Building Security into DevOps Part 1 | Black Duck

AppSec Decoded: Software 0:11:17

AppSec Decoded: Software Vulnerability Snapshot takeaways

Dating App Development: 0:05:03

Dating App Development: Features & Cost Explained | How to Make a Dating App?

AppSec Decoded: Continuous 0:12:44

AppSec Decoded: Continuous AppSec testing in DevSecOps with Seeker IAST | Black Duck

AppSec Decoded: Improving 0:05:50

AppSec Decoded: Improving the Sec in DevSecOps | Black Duck

AppSec Decoded: Methods 0:07:11

AppSec Decoded: Methods and tools for SBOM generation | Black Duck

AppSec Decoded: New 0:03:08

AppSec Decoded: New executive order changes dynamic of software security standards | Black Duck

AppSec Decoded: Strategies 0:04:12

AppSec Decoded: Strategies for identifying and preventing malicious code in your SDLC | Black Duck

AppSec Decoded: Managing 0:07:23

AppSec Decoded: Managing supply chain risks | Black Duck

The Basics of 0:03:49

The Basics of Application Security Explained! | DR. ABDUL KHAN

AppSec Decoded: A 0:14:01

AppSec Decoded: A holistic approach to your AppSec program | Black Duck

AppSec Decoded: Why 0:05:09

AppSec Decoded: Why organizations can’t ignore open source security | Black Duck

AppSec Decoded: Three 0:06:25

AppSec Decoded: Three ways to successfully implement security in DevSecOps | Black Duck

AppSec Decoded: Is 0:08:29

AppSec Decoded: Is an 'SBOM' a Silver Bullet for Software Supply Chain Security? | Black D...

AppSec Decoded: Reducing 0:11:28

AppSec Decoded: Reducing the risk of ransomware | Black Duck

Application Security Decoded: 0:02:52

Application Security Decoded: Manufacturers should build security into their IoT devices | Synopsys

TAC Security CEO 0:04:13

TAC Security CEO Trishneet Arora Explained Next-Gen Vulnerability Assessment - ESOF AppSec

AppSec Decoded: What 0:03:42

AppSec Decoded: What are organizations doing to manage open source vulnerabilities | Black Duck