HP's new product analyses software security 10 times faster than its predecessor, says the company.
The HP Fortify Static Code Analyzer (SCA) 4.0 uses parallelised static application security testing to achieve the new speeds, as company VP Mike Armistead said security vulnerabilities are becoming more common due to increasing demand to support new technology.
"A holistic approach to software security is imperative, and with the HP Fortify portfolio, organisations have the ability to assess vulnerabilities across all of their software, assure security flaws are resolved before deployment, and protect applications from attacks once in production," Armistead said.
The new tool's multiple software application threads parallel analysis claimed to decrease false positives by 20% than its previous versions, offer better software security intelligence reports, reduce application development time and provide flexible deployment options.
Additionally, the HP Fortify SCA 4.0 powers static application security assessments in the HP Fortify on Demand cloud-based application security-as-a-service application.
According to the company, the total vulnerabilities from 2011 to 2012 increased by 19% and about 99% of the tested applications were reported to contain one or more serious security vulnerabilities, while mobile application weakness has increased by about 800% in past five years.
The company will make the new tool available across the globe starting from September.