SPI Dynamics Introduces SecureObjects™ for Microsoft Visual Studio .NET 2003
First and only class library designed for Web application developers to build security into applications from the ground up
ATLANTA - June 29, 2004 - SPI Dynamics today announced SecureObjects, the first and only class library of objects specifically designed to provide application security. A next generation approach in the convergence of application development and security, SecureObjects enables developers to write secure application code from the ground up by delivering commonly used objects that are written securely. The first version will be fully integrated with Microsoft Visual Studio .NET 2003.
“Implementing application-level security in a form factor that is familiar and convenient for the developer is a proactive approach that directly addresses secure coding issues at the beginning of the application lifecycle without requiring the developer to learn new skills or change their current process,” said Richard D. Stiennon, Vice President, Gartner Research. “By providing developers with secure software building blocks, they gain the ability to implement secure code in real-time as an application is being developed. This will inevitably improve software quality and ultimately improve development productivity, shortening the development cycle and reducing the concern of security risks once the application is in production.”
SecureObjects empowers developers with security expertise while requiring “zero change” in their existing development process and no impact on their biggest concern - time to market. By leveraging SPI Dynamics’ extensive application security expertise and with a foundation that is based on the industry’s most comprehensive Web application vulnerability database, SecureObjects class libraries will help address 70 percent of defects exposed by insecure application coding practices. SecureObjects helps businesses to significantly reduce the overall cost and resources associated with the development of applications by providing a proactive way of incorporating security in the beginning stages of development, instead of later in the development cycle or once the application is in active production.
SecureObjects will be integrated with current SPI Dynamics’ offerings for the Microsoft development community. Customers of SPI Dynamics’ WebInspect™ for Developers - Microsoft Visual Studio .NET version application security testing and assessment product will be provided with SecureObjects reference codes within their testing environment. This will enable developers to utilize SecureObjects in the remediation phase for security defects detected by WebInspect to quickly identify and eliminate application security defects. This combined solution enables developers to find and fix code level security defects within their current working environment.
SecureObjects 1.0 features include:
Input Validation objects will check incoming data on web forms to validate user-supplied input against a set of rules and prevent parameter manipulation exploits, such as SQL Injection attacks.
Error Handling objects will manage the security events generated from the other objects in the library. These objects will catch the security events as they occur, initiate a response and log them to the Windows Event Log.
Microsoft Visual Studio .NET 2003 integration will encompass wizards and drag-and-drop capabilities to easily implement SecureObjects within existing or new projects built with Microsoft ASP.NET.
Availability and Pricing
SPI Dynamics SecureObjects 1.0 will be available in Q3 2004. For pricing information please contact SPI Dynamics at (678) 781-4800 or [email protected].
About SPI Dynamics
For more information visit http://www.spidynamics.com or call (678) 781-4800.
All product and company names herein may be trademarks of their respective owners.