Application & Architectural Risk Assessments

<!DOCTYPE HTML> <html lang="en"> <head>  <script defer="defer" type="text/javascript" src="/.rum/@adobe/helix-rum-js@%5E2/dist/rum-standalone.js"></script> <script src="https://cdn.cookielaw.org/scripttemplates/otSDKStub.js" type="text/javascript" charset="UTF-8" data-domain-script="01914ce7-a755-7d2f-8c7a-a2de5df03bad"></script> <script type="text/javascript"> function OptanonWrapper() { } </script>  <script type="text/javascript" src="/content/dam/black-duck/util/gdpr/geo_v1.js"></script> <meta charset="UTF-8"/> <meta name="viewport" content="width=device-width, initial-scale=1.0"/> <meta http-equiv="X-UA-Compatible" content="IE=edge"/> <link rel="alternate" hreflang="en-us" href="https://www.blackduck.com/services/security-program/software-architecture-design.html"/> <link rel="alternate" hreflang="zh-cn" href="https://www.blackduck.com/zh-cn/services/security-program/software-architecture-design.html"/> <link rel="alternate" hreflang="ja-jp" href="https://www.blackduck.com/ja-jp/services/security-program/software-architecture-design.html"/> <link rel="alternate" hreflang="x-default" href="https://www.blackduck.com/services/security-program/software-architecture-design.html"/> <title>Application & Architectural Risk Assessments | Black Duck </title> <link rel="canonical" href="https://www.blackduck.com/services/security-program/software-architecture-design.html"/> <meta name="description" content="Black Duck offers architectural and application risk assessments to identify vulnerabilities early. Our threat assessment approach will help you address security risks. "/> <meta name="last-modified" content="2024-10-24 08:31:48 PM"/> <meta property="og:description" content="Black Duck offers architectural and application risk assessments to identify vulnerabilities early. Our threat assessment approach will help you address security risks. "/> <meta property="og:title" content="Application & Architectural Risk Assessments | Black Duck "/> <meta property="og:type" content="website"/> <meta property="og:url" content="https://www.blackduck.com/services/security-program/software-architecture-design.html"/> <meta name="searchBusinessArea" content="Security Consulting and Services"/> <meta name="searchContentType" content="Web Page"/> <meta name="searchMarketingStageType"/> <meta name="searchProductCategory" content="Security Consulting and Services"/> <meta name="searchSolutionType"/> <meta name="twitter:card" content="summary_large_image"/> <meta name="twitter:description" content="Black Duck offers architectural and application risk assessments to identify vulnerabilities early. Our threat assessment approach will help you address security risks. "/> <meta name="twitter:site" content="blackduck_sw"/> <meta name="twitter:title" content="Application & Architectural Risk Assessments | Black Duck "/> <meta name="p:domain_verify" content="2070085ca3a586484558bf4ee3e19943"/> <link rel="icon" href="/etc.clientlibs/synopsys-clientlibs/synopsys-pagelibs/resources/images/favicon.svg"/> <script src="https://assets.adobedtm.com/4cb89ff5b198/2b1d17b087b8/launch-4040a5db2c0a.min.js" async></script> <script src="/etc.clientlibs/synopsys/clientlibs/custom-jquery.lc-5127896d4b794468acf1aedaafa37991-lc.min.js"></script> <script src="/etc.clientlibs/core/wcm/components/commons/datalayer/v1/clientlibs/core.wcm.components.commons.datalayer.v1.lc-70264651675213ed7f7cc5a02a00f621-lc.min.js"></script> <script src="/etc.clientlibs/synopsys-clientlibs/synopsys-headlibs.lc-e6656ae98ae5c559ddc01225c2b98796-lc.min.js"></script> <link rel="stylesheet" href="/etc.clientlibs/synopsys-clientlibs/synopsys-pagelibs.lc-2ee7db836cd34b0ac51ffc8c47c2c9d1-lc.min.css" type="text/css"> </head> <body data-template="sig-content-page-template" data-content-type="sig" data-sticky-nav="false" class="page sig-page publish "> <input type="hidden" id="campaign"/> <script> var camp=document.getElementById('campaign').value; url = new URL(window.location.href); if (url.searchParams.get('intcmp') || camp.length>2 ) { const params = new Proxy(new URLSearchParams(window.location.search), { get: (searchParams, prop) => searchParams.get(prop), }); campaignCode = params.intcmp; window.adobeDataLayer = window.adobeDataLayer || []; window.adobeDataLayer.push({ web: { webPageDetails: { URL:'https:\/\/www.blackduck.com\/services\/security\u002Dprogram\/software\u002Darchitecture\u002Ddesign.html', name:'Application Security Threat \x26 Risk Assessments', } }, _softwareintegritygroupinc:{ internalCampaign: { campaignCode: campaignCode, campaignName: '', campaignClicks: {value: 1}, } } });} url2 = new URL(window.location.href); if (url2.searchParams.get('cmp') || url2.searchParams.get('utm_source') || url2.searchParams.get('utm_medium') || url2.searchParams.get('utm_campaign') || url2.searchParams.get('utm_group')|| url2.searchParams.get('utm_creative')|| url2.searchParams.get('utm_keyword')) { var utm_source='no_source'; var utm_cmp='no_cmp'; var utm_medium='no_medium'; var utm_campaign='no_campaign'; var utm_group='no_group'; var utm_creative='no_creative'; var utm_keyword='no_keyword'; const params = new Proxy(new URLSearchParams(window.location.search), { get: (searchParams, prop) => searchParams.get(prop), }); if(params.utm_source!=null) utm_source = params.utm_source; if(params.utm_medium!=null) utm_medium = params.utm_medium; if(params.utm_campaign!=null) utm_campaign = params.utm_campaign; if(params.utm_group!=null) utm_group = params.utm_group; if(params.utm_creative!=null) utm_creative = params.utm_creative; if(params.utm_keyword!=null) utm_keyword = params.utm_keyword; if(params.cmp!=null) { utm_cmp = params.cmp; var trackingCode=utm_cmp; } else { var trackingCode=utm_source+":"+utm_medium+":"+utm_campaign+":"+utm_group+":"+utm_creative+":"+utm_keyword; } window.adobeDataLayer = window.adobeDataLayer || []; window.adobeDataLayer.push({ web: { webPageDetails: { URL:'https:\/\/www.blackduck.com\/services\/security\u002Dprogram\/software\u002Darchitecture\u002Ddesign.html', name:'Application Security Threat \x26 Risk Assessments', } }, _softwareintegritygroupinc:{ externalCampaign: { campaignClicks: {value: 1}, } }, marketing:{ trackingCode: trackingCode, } }); } let hs_id=''; const params2 = new Proxy(new URLSearchParams(window.location.search), { get: (searchParams, prop) => searchParams.get(prop), }); hs_id = params2.hs_id; window.adobeDataLayer = window.adobeDataLayer || []; window.adobeDataLayer.push({ event: "page-view", web: { webPageDetails: { name: 'Application Security Threat \x26 Risk Assessments', url: 'https:\/\/www.blackduck.com\/services\/security\u002Dprogram\/software\u002Darchitecture\u002Ddesign.html', siteSection: 'Services', server: window.location.hostname, pageViews: { value: 1 }, } }, _softwareintegritygroupinc:{ web:{ webPageDetails:{ webURL: window.location.href, pageType: 'Product\/Solution', siteSubSection2: 'Services|Security Program', siteSubSection3: 'Services|Security Program|Application Security Threat \x26 Risk Assessments', siteSubSection4: 'n\/a', siteSubSection5: 'n\/a', siteName: 'blackduck', countryLanguage: 'en_US', articleAuthor: '', pageTitle: 'Application Security Threat \x26 Risk Assessments', defensicsProtocol: '', defensicsIndustry: '', defensicsTechnology: '', product: 'Security Consulting and Services', solution: '', marketingStage: '', contentType: 'Web Page' }, queryParam: { hsid: hs_id } } } }); </script> <div class="site-wrapper"> <div class="root synopsysContainer responsivegrid"> <div class="aem-Grid aem-Grid--12 aem-Grid--default--12 "> <div class="experiencefragment aem-GridColumn aem-GridColumn--default--12"> <div id="announcementBanner" class="cmp-experiencefragment cmp-experiencefragment--announcement-banner"> <div class="xf-content-height"> <div class="aem-Grid aem-Grid--12 aem-Grid--default--12 "> <div class="synopsysContainer responsivegrid aem-GridColumn aem-GridColumn--default--12"> <div class="aem-Grid aem-Grid--12 aem-Grid--default--12 "> <div class="htmlTextOnly aem-GridColumn aem-GridColumn--default--12"> <div class="container "> <section id="ac0fe7574-7f45-4766-849d-989b9f26f625" class="html-text-only-component" data-enable-page-css="true"> <style> /* ================= TOP ANNOUNCEMENT BANNER ===================== */ #announcementBanner .container { width: 100%; max-width: 100%; padding: 0; } .fa-bullhorn { margin-right:20px; font-size:24px; } .appSec-top-alert-banner { /* display: none;*/ width: 100%; padding: 20px 10px; background: #00a9b7; color: #fff; text-align: center; } .appSec-top-alert-banner-close { display: inline; margin-right: 20px; font-weight: 600; font-size: 24px; cursor: pointer; position: absolute; top: 0px; left: 0; } .appSec-top-alert-banner-p { margin: 0; line-height: 20px; position: relative; padding-left: 20px; font-weight:400; } .appSec-top-alert-banner-a { color: #fff; font-weight: 400; text-decoration: underline; } .appSec-top-alert-banner-a:hover { text-decoration: none; } .stay-visible { display: block; } .site-content, .container.component-banner-container, .component-banner .banner-img, .component-banner .cropped-img { max-width: 1920px; } .component-banner .banner-img, .component-banner .cropped-img { width: 1920px; } /* ================= END ANNOUNCEMENT BANNER ===================== */ </style> <section class="appSec-top-alert-banner"> <p class="appSec-top-alert-banner-p">  <i class="fa-duotone fa-bullhorn"></i> The Synopsys Software Integrity Group is now Black Duck®. <a class="appSec-top-alert-banner-a" href="/blog/our-new-beginning-as-black-duck.html" target="_blank">Learn More</a></p> </section> </section> </div> </div> </div> </div> </div> </div> </div> </div> <div class="experiencefragment aem-GridColumn aem-GridColumn--default--12"> <div id="experiencefragment-68748ab400" class="cmp-experiencefragment cmp-experiencefragment--sig-topnav"> <div class="xf-content-height"> <div class="aem-Grid aem-Grid--12 aem-Grid--default--12 "> <div class="header aem-GridColumn aem-GridColumn--default--12"> <link rel="stylesheet" href="/etc.clientlibs/synopsys/clientlibs/navigation/header.lc-7fdde5b39943414ceea6ece1e1b53c26-lc.min.css" type="text/css"> <section id="a0c7fc4d9-94e7-460c-981e-c410440656aa" class="navigation-header-component">    <nav class="AppSec-mobileNav"> <section class="SIG-Main-container"> <figure class="SIG-bd-logo-figure"> <a href="/"> <img class="SIG-bd-logo" src="/content/dam/black-duck/en-us/images/BlackDuckLogo-OnDark.svg" alt="Black Duck Home Page"> </a> </figure> <figure class="search-icon-mobile"><i class="fa-regular fa-magnifying-glass"></i></figure> <figure id="hamburger"></figure> </section> </nav>  <section id="topNav" class="mobileSlide"> <nav class="SIG-Main"> <section class="SIG-Main-container"> <figure class="SIG-bd-logo-figure desktopMain"> <a href="/"> <img class="SIG-bd-logo" src="/content/dam/black-duck/en-us/images/BlackDuckLogo-OnDark.svg" alt="Black Duck Home Page"> </a> </figure> <a class="AppSecHome" href="/"> <span class="SIG-Main-h1 desktopMain">  <span class="h1b">  Build trust in your software</span> </span> </a> <div class="divider"></div> <ul class="SIG-Main-Corp"> <li class="LiNoDropdown"> <a href="https://community.blackduck.com" target="_blank">Support</a> </li> <li class="search-icon"><i class="fa-regular fa-magnifying-glass"></i></li> <li class="globalSitesIcon" aria-label="Language"><i class="fa-light fa-globe"></i></li> <li class="mobile-Global lang-selected" data-id=".com" data-glossary-id=".com/glossary">English</li> <li class="mobile-Global" data-id=".com/ja-jp" data-glossary-id=".com/ja-jp/glossary">日本語</li> <li class="mobile-Global" data-id=".com/zh-cn" data-glossary-id=".com/zh-cn/glossary">简体中文</li> </ul> </section> </nav>  <section class="searchBarHidden"> <div class="search-wrapper"> <svg class="close-search-bar" aria-labelledby="svg-close-searchbar" version="1.1" id="Layer_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px" viewBox="0 0 20.1 12.2" style="enable-background:new 0 0 20.1 12.2;" xml:space="preserve"> <text id="svg-close-searchbar">close search bar</text> <style type="text/css"> .st0bnbn{fill:#ffffff;} </style> <path id="bx-up-arrow-alt" class="st0bnbn" d="M8.6,5.7l1.5-1.2l0,0l1.5,1.2l6.4,6.4l2.1-2.1L10.1,0L0,10.1l2.1,2.1L8.6,5.7z"/> </svg> <section class="component-search clearfix"> <div id="searchbox" class="snps-searchbox" data-enable-history="true" data-endpoint="default"> <div class="coveo-search-section"> <atomic-external id="coveoSearchboxExt"> <atomic-search-box class="CoveoSearchbox hydrated" data-atomic-rendered="true" data-atomic-loaded="true" number-of-queries="5" minimum-query-length="0" clear-filters="false"></atomic-search-box> </atomic-external> <atomic-search-interface id="coveoSearchboxInterface"></atomic-search-interface> </div> </div> </section> </div> </section> <p class="noLanguage">Sorry, not available in this language yet</p>  <section class="languageHidden"> <div class="lauguage-wrapper"> <svg class="close-language" aria-labelledby="svg-close-lang" version="1.1" id="Layer_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px" viewBox="0 0 20.1 12.2" style="enable-background:new 0 0 20.1 12.2;" xml:space="preserve"> <text id="svg-close-lang">close language selection</text> <style type="text/css"> .st0vmvm{fill:#ffffff;} </style> <path id="bx-up-arrow-alt" class="st0vmvm" d="M8.6,5.7l1.5-1.2l0,0l1.5,1.2l6.4,6.4l2.1-2.1L10.1,0L0,10.1l2.1,2.1L8.6,5.7z"/> </svg> <ul class="globalLinks"> <li class="desktop-Global lang-selected" data-id=".com" data-glossary-id=".com/glossary">English</li> <li class="desktop-Global" data-id=".com/ja-jp" data-glossary-id=".com/ja-jp/glossary">日本語</li> <li class="desktop-Global" data-id=".com/zh-cn" data-glossary-id=".com/zh-cn/glossary">简体中文</li> </ul> </div> </section>  <nav id="Sig-Sub" class="SIG-Sub"> <section class="SIG-Sub-container"> <ul class="SIG-Sub-ul">  <li id="Solutions" class="LihasDropdown"> <a href="#">Solutions</a> </li> <li id="Tools-Services" class="LihasDropdown"> <a href="#">Products</a> </li> <li id="Customer-Success" class="LihasDropdown"> <a href="#">Services</a> </li> <li><a href="/partners.html">Partners</a></li> <li id="Resources" class="LihasDropdown"> <a href="#">Resources</a> </li> <li id="Blog" class=""> <a href="/blog.html">Blog</a> </li> <li id="AboutUs" class="LihasDropdown"> <a href="#">Company</a> </li> <li id="Contact-Sales" class="SIG-Sub-CS"><a href="/contact-sales.html">Contact Sales</a></li> </ul> </section> </nav> </section>  <nav id="Nav-Why-Sierra" class="AboutUs SIG-Sub-dropdown"> <p class="SIG-mobile-breadcrumb">Company</p> <section id="Container-Tools-Services" class="SIG-Sub-dropdown-container">  <svg class="mobile-go-back" aria-labelledby="svg-go-back1" version="1.1" id="Layer_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px" viewBox="0 0 27 15.8" style="enable-background:new 0 0 27 15.8;" xml:space="preserve"><style type="text/css">.st0xmmxm{fill-rule:evenodd;clip-rule:evenodd;}</style><g id="arrow-left" transform="translate(-4.498 -10.123)"><path id="Path_367" class="st0xmmxm" d="M13.2,10.5c0.4,0.4,0.4,1.2,0,1.6c0,0,0,0,0,0l-6,6l6,6c0.4,0.4,0.4,1.2,0,1.6s-1.2,0.4-1.6,0l-6.7-6.7c-0.4-0.4-0.4-1.2,0-1.6c0,0,0,0,0,0l6.8-6.8C12,10,12.7,10,13.2,10.5C13.2,10.5,13.2,10.5,13.2,10.5L13.2,10.5z"/><path id="Path_368" class="st0xmmxm" d="M5.6,18c0-0.6,0.5-1.1,1.1-1.1h23.6c0.6,0,1.1,0.5,1.1,1.1s-0.5,1.1-1.1,1.1H6.8C6.1,19.1,5.6,18.6,5.6,18z"/></g></svg> <text id="svg-go-back1">go back</text> <button class="mobile-go-back-txt">Go Back</button> <section> <h2><a href="/company.html">About Black Duck</a></h2> <ul id="toolsServicesFirst"> <li class="defaultLi"><a href="/company/leadership.html">Leadership <li><a href="https://news.blackduck.com">Newsroom</a></li> <li><a href="/blog.html">Blog</a></li>  <li><a href="/partners.html">Partners</a></li> <li><a href="/company/careers.html">Careers</a></li> <li><a href="/contact-sales.html">Contact Sales</a></li> </ul> </section>  <section class="ad-rotator rotationAd"> <div class="ad-dots"> <span class="dot active" data-ad="0"></span> <span class="dot" data-ad="1"></span> <span class="dot" data-ad="2"></span> </div> <div class="ads"> <div class="ad" id="ad0"> <img src="/content/dam/black-duck/en-us/images/Gartner_Magic_Quadrant_AST_2023-final-bg.svg" alt="Gartner Magic Quadrant" class="navAdImg"> <p class="adCopy"> 2023 Gartner® Magic Quadrant™ for AppSec Testing <a href="/resources/analyst-reports/gartner-magic-quadrant-appsec.html">Read more</a> </p> </div> <div class="ad" id="ad1"> <img src="/content/dam/black-duck/en-us/images/2023Q3_sast-optimized.png" alt="Gartner Magic Quadrant" class="navAdImg"> <p class="adCopy"> Forrester Wave Leader for SAST <a href="/resources/analyst-reports/forrester-wave-sast.html">Read more</a> </p> </div> <div class="ad" id="ad2"> <img src="/content/dam/black-duck/en-us/images/forrester-wave-sca-smallNav.jpg" alt="Gartner Magic Quadrant" class="navAdImg"> <p class="adCopy"> Forrester Wave Leader for SCA <a href="/resources/analyst-reports/forrester-wave-software-composition-analysis.html">Read more</a> </p> </div> </div> </section> </section>  <section class="navDefinitions">  <ul class="navDefUl toolsServicesFirst">  <li><span>Leadership</span> | Meet the team guiding Black Duck's vision and strategy.</li> <li><span>Newsroom</span> | Latest news, press releases, and media coverage about Black Duck.</li> <li><span>Blog</span> | Insights, updates, and expert opinions on application security.</li> <li><span>Partners</span> | Information on Black Duck's partnerships and collaboration opportunities.</li> <li><span>Careers</span> | Explore job opportunities and career paths at Black Duck.</li> <li><span>Contact Sales</span> | Get in touch with our sales team for product inquiries and consultations.</li> </ul>  <svg class="close-sub-nav" aria-labelledby="svg-close-subnav1" version="1.1" id="Layer_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px" viewBox="0 0 20.1 12.2" style="enable-background:new 0 0 20.1 12.2;" xml:space="preserve"> <text id="svg-close-subnav1">close sub navigation</text> <style type="text/css"> .st0bnbn{fill:#ffffff;} </style> <path id="bx-up-arrow-alt" class="st0bnbn" d="M8.6,5.7l1.5-1.2l0,0l1.5,1.2l6.4,6.4l2.1-2.1L10.1,0L0,10.1l2.1,2.1L8.6,5.7z"/> </svg> </section>  <section class="indexBar"> <button class="indexBarContainer"> <a class="indexBarA" href="/all-products-services.html"> <span>See All Product Services</span> </a> </button> </section> </nav>  <nav id="Nav-Tools-Services" class="Tools-Services SIG-Sub-dropdown"> <p class="SIG-mobile-breadcrumb">Products</p> <section id="Container-Tools-Services" class="SIG-Sub-dropdown-container">  <svg class="mobile-go-back" aria-labelledby="svg-go-back1" version="1.1" id="Layer_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px" viewBox="0 0 27 15.8" style="enable-background:new 0 0 27 15.8;" xml:space="preserve"><style type="text/css">.st0xmmxm{fill-rule:evenodd;clip-rule:evenodd;}</style><g id="arrow-left" transform="translate(-4.498 -10.123)"><path id="Path_367" class="st0xmmxm" d="M13.2,10.5c0.4,0.4,0.4,1.2,0,1.6c0,0,0,0,0,0l-6,6l6,6c0.4,0.4,0.4,1.2,0,1.6s-1.2,0.4-1.6,0l-6.7-6.7c-0.4-0.4-0.4-1.2,0-1.6c0,0,0,0,0,0l6.8-6.8C12,10,12.7,10,13.2,10.5C13.2,10.5,13.2,10.5,13.2,10.5L13.2,10.5z"/><path id="Path_368" class="st0xmmxm" d="M5.6,18c0-0.6,0.5-1.1,1.1-1.1h23.6c0.6,0,1.1,0.5,1.1,1.1s-0.5,1.1-1.1,1.1H6.8C6.1,19.1,5.6,18.6,5.6,18z"/></g></svg> <text id="svg-go-back1">go back</text> <button class="mobile-go-back-txt">Go Back</button> <section> <h2>Integrated SaaS Platform</h2> <ul id="toolsServicesFirst"> <li class="defaultLi"><a href="/platform.html">Polaris Platform</a></li> <li><a href="/platform.html#A">fAST Static</a></li> <li><a href="/platform.html#A">fAST SCA</a></li> <li><a href="/platform.html#A">fAST Dynamic</a></li> </ul> </section> <section> <h2>Tools</h2> <ul id="toolsServicesSecond"> <li class="defaultLi"><a href="/static-analysis-tools-sast/coverity.html">Coverity Static</a></li> <li><a href="/software-composition-analysis-tools/black-duck-sca.html">Black Duck SCA</a></li> <li><a href="/dast.html">Continuous Dynamic</a></li> <li><a href="/interactive-application-security-testing.html">Seeker Interactive</a></li> <li><a href="/software-risk-manager.html">Software Risk Manager ASPM</a></li> <li><a href="/fuzz-testing.html">Defensics Protocol Fuzzing</a></li> </ul> </section> <section> <h2><a href="/integrations.html">Integrations</a></h2> <ul id="toolsServicesThird"> <li><a href="/code-sight.html">Code Sight IDE Plug-in</a></li> <li><a href="/integrations.html#scm">SCM Integrations</a></li> <li><a href="/integrations.html#build-ci">Build & CI Tool Integrations</a></li> <li><a href="/integrations.html#workflow">Developer Workflow Integrations</a></li> <li><a href="/integrations.html#security">3rd-Party AST Tool Integrations</a></li> <li><a href="/integrations.html#cloud">Cloud Deployment Integrations</a></li> </ul> </section> <section> <a id="navAd" href="/resources/analyst-reports/gartner-magic-quadrant-appsec.html"> <img src="/content/dam/black-duck/en-us/images/Gartner_Magic_Quadrant_AST_2023-final-bg.svg" alt="Gartner Magic Quadrant" class="navAdImg"> <span class="navAdP"> <span class="navAdSpanMain">2023 Gartner® Magic Quadrant™ for AppSec Testing</span> <span class="navAdSpanSub">See why Black Duck is a Leader</span> </span> </a> </section> </section>  <section class="navDefinitions">  <ul class="navDefUl toolsServicesFirst"> <li class="default"><span>Polaris Platform</span> | Unified platform for managing software security and compliance.</li> <li><span>fAST Static</span> | Unified platform for managing software security and compliance.</li> <li><span>fAST SCA</span> | Unified platform for managing software security and compliance.</li> <li><span>fAST Dynamic</span> | Unified platform for managing software security and compliance.</li> </ul> <ul class="navDefUl toolsServicesSecond"> <li><span>Coverity Static</span> | Static analysis tool for detecting software defects and vulnerabilities.</li> <li><span>Black Duck SCA</span> | Software composition analysis to manage open source security and license compliance.</li> <li><span>Continuous Dynamic</span> | Continuous dynamic application security testing.</li> <li><span>Seeker Interactive</span> | Interactive application security testing tool for detecting vulnerabilities.</li> <li><span>Software Risk Manager ASPM</span> | Application security posture management tool for risk management.</li> <li><span>Defensics Protocol Fuzzing</span> | Protocol fuzzing tool to identify and fix security flaws.</li> </ul> <ul class="navDefUl toolsServicesThird">  <li><span>Code Sight IDE Plug-in</span> | Integrated development environment plug-in for real-time security feedback.</li> <li><span>SCM Integrations</span> | Source code management integrations for seamless security checks.</li> <li><span>Build & CI Tool Integrations</span> | Integrations with build and continuous integration tools.</li> <li><span>Developer Workflow Integrations</span> | Tools to integrate security into the developer workflow.</li> <li><span>3rd-Party AST Tool Integrations</span> | Integrations with third-party application security testing tools.</li> <li><span>Cloud Deployment Integrations</span> | Integrations for securing cloud deployments.</li> </ul> <ul class="navDefUl toolsServicesFourth"> <li><span>Open Source & Security Audits</span> | Comprehensive technical due diligence services for M&A.</li> </ul>  <svg class="close-sub-nav" aria-labelledby="svg-close-subnav1" version="1.1" id="Layer_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px" viewBox="0 0 20.1 12.2" style="enable-background:new 0 0 20.1 12.2;" xml:space="preserve"> <text id="svg-close-subnav1">close sub navigation</text> <style type="text/css"> .st0bnbn{fill:#ffffff;} </style> <path id="bx-up-arrow-alt" class="st0bnbn" d="M8.6,5.7l1.5-1.2l0,0l1.5,1.2l6.4,6.4l2.1-2.1L10.1,0L0,10.1l2.1,2.1L8.6,5.7z"/> </svg> </section>  <section class="indexBar"> <button class="indexBarContainer"> <a class="indexBarA" href="/all-products-services.html"> <span>See All Product Services</span> </a> </button> </section> </nav>  <nav id="Nav-Solutions" class="Solutions SIG-Sub-dropdown"> <p class="SIG-mobile-breadcrumb">Solutions</p> <section id="Container-Tools-Services" class="SIG-Sub-dropdown-container">  <svg class="mobile-go-back" aria-labelledby="svg-go-back2" version="1.1" id="Layer_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px" viewBox="0 0 27 15.8" style="enable-background:new 0 0 27 15.8;" xml:space="preserve"><style type="text/css">.st0xmmxm{fill-rule:evenodd;clip-rule:evenodd;}</style><g id="arrow-left" transform="translate(-4.498 -10.123)"><path id="Path_367" class="st0xmmxm" d="M13.2,10.5c0.4,0.4,0.4,1.2,0,1.6c0,0,0,0,0,0l-6,6l6,6c0.4,0.4,0.4,1.2,0,1.6s-1.2,0.4-1.6,0l-6.7-6.7c-0.4-0.4-0.4-1.2,0-1.6c0,0,0,0,0,0l6.8-6.8C12,10,12.7,10,13.2,10.5C13.2,10.5,13.2,10.5,13.2,10.5L13.2,10.5z"/><path id="Path_368" class="st0xmmxm" d="M5.6,18c0-0.6,0.5-1.1,1.1-1.1h23.6c0.6,0,1.1,0.5,1.1,1.1s-0.5,1.1-1.1,1.1H6.8C6.1,19.1,5.6,18.6,5.6,18z"/></g></svg> <text id="svg-go-back2">go back</text> <button class="mobile-go-back-txt">Go Back</button> <section> <h2>Use Cases</h2> <ul id="solutionsFirst"> <li><a href="/solutions/artificial-intelligence-software-development.html">AI-generated code</a></li> <li><a href="/solutions/api-security-testing.html">API Security Testing</a></li> <li><a href="/solutions/appsec-consolidation.html">AppSec Program Consolidation</a></li> <li><a href="/solutions/application-security-testing.html">Application Security Testing</a></li> <li><a href="/solutions/devsecops.html">DevSecOps</a></li> <li><a href="/solutions/software-supply-chain-security.html">Software Supply Chain Security</a></li> <li><a href="/solutions/enterprise-application-security-risk-management.html">Manage Enterprise AppSec Risk</a></li> <li><a href="/solutions/cloud-security.html">Cloud & Container Security</a></li> <li><a href="/solutions/open-source-security.html">Open Source License Compliance</a></li> <li><a href="/solutions/mergers-and-acquisitions.html">M&A Due Diligence</a></li> <li><a href="/solutions/compliance.html">Quality and Security Standards Compliance</a></li> </ul> </section> <section> <h2>By Technology</h2> <ul id="solutionsSecond"> <li><a href="/static-analysis-tools-sast.html">Static Analysis (SAST)</a></li> <li><a href="/software-composition-analysis-tools.html">Software Composition Analysis (SCA)</a></li> <li><a href="/dast.html">Dynamic Analysis (DAST)</a></li> <li><a href="/interactive-application-security-testing.html">Interactive Analysis (IAST)</a></li> <li><a href="/services/penetration-testing.html">Penetration Testing</a></li> <li><a href="/services/security-testing/mobile-application-security-testing.html">Mobile Application Security Testing (MAST)</a></li> <li><a href="/software-risk-manager.html">Application Security Posture Management (ASPM)</a></li> <li><a href="/fuzz-testing.html">Fuzz Testing Solutions</a></li> </ul> </section> <section> <h2>By Industry</h2> <ul id="solutionsThird"> <li><a href="/solutions/automotive.html">Automotive</a></li> <li><a href="/solutions/financial-services.html">Financial Services</a></li> <li><a href="/solutions/iot-embedded.html">IoT & Embedded</a></li> <li><a href="/solutions/healthcare.html">Medical Devices</a></li> <li><a href="/solutions/government.html">Public Sector</a></li> </ul> </section> <section> <h2>By Role</h2> <ul id="solutionsFourth"> <li><a href="/solutions/dev-devops.html">Dev and DevOps Teams</a></li> <li><a href="/solutions/security-teams.html">Security Teams</a></li> <li><a href="/solutions/legal-teams.html">Legal Teams</a></li> </ul> </section> </section>  <section class="navDefinitions"> <ul class="navDefUl solutionsFirst"> <li><span>AI-generated code</span> | Harness the power of AI coding assistants while managing the risks.</li> <li><span>API Security Testing</span> | Manage software risks with a holistic API security testing program.</li> <li><span>AppSec Program Consolidation</span> | Simplify your application security program.</li> <li><span>Application Security Testing</span> | Solutions to address security risks at all stages of the application life cycle. </li> <li><span>DevSecOps</span> | Solutions to help shift security left without slowing down your development teams.</li> <li><span>Software Supply Chain Security</span> | Solutions to identify and manage software supply chain risks end-to-end.</li> <li><span>Manage Enterprise AppSec Risk</span> | Scale your application security program without increasing complexity or adding friction.</li> <li><span>Cloud & Container Security</span> | Optimize your applications for secure deployment and operation in the cloud.</li> <li><span>Open Source License Compliance</span> | Effective solutions for ensuring open source license compliance.</li> <li><span>M&A Due Diligence</span> | Identify software risks that could negatively impact the value of acquired IP.</li> <li><span>Quality and Security Standards Compliance</span> | Ensure your software complies with the standards critical to customers and regulators.</li> </ul> <ul class="navDefUl solutionsSecond"> <li><span>Static Analysis (SAST)</span> | Analyzing code for security vulnerabilities without executing it.</li> <li><span>Software Composition Analysis (SCA)</span> | Analyzing software components for security and license compliance.</li> <li><span>Dynamic Analysis (DAST)</span> | Testing running applications for security vulnerabilities.</li> <li><span>Interactive Analysis (IAST)</span> | Real-time security testing during application execution.</li> <li><span>Penetration Testing</span> | Simulated cyberattacks to identify vulnerabilities.</li> <li><span>Mobile Application Security Testing (MAST)</span> | Ensuring the security of mobile applications.</li> <li><span>Application Security Posture Management (ASPM)</span> | Managing and improving application security posture.</li> <li><span>Fuzz Testing Solutions</span> | Identifying vulnerabilities by inputting random data to applications.</li> </ul> <ul class="navDefUl solutionsThird"> <li><span>Automotive</span> | Security solutions for automotive industry applications.</li> <li><span>Financial Services</span> | Security solutions tailored for financial services.</li> <li><span>IoT & Embedded</span> | Security for Internet of Things and embedded systems.</li> <li><span>Medical Devices</span> | Security solutions for medical devices.</li> <li><span>Public Sector</span> | Security solutions for government and public sector organizations.</li> </ul> <ul class="navDefUl solutionsFourth"> <li><span>Dev and DevOps Teams</span> | Security tools and practices for development and DevOps teams.</li> <li><span>Security Teams</span> | Solutions and support for dedicated security teams.</li> <li><span>Legal Teams</span> | Resources and compliance tools for legal teams.</li> </ul>  <svg class="close-sub-nav" aria-labelledby="svg-close-subnav2" version="1.1" id="Layer_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px" viewBox="0 0 20.1 12.2" style="enable-background:new 0 0 20.1 12.2;" xml:space="preserve"> <text id="svg-close-subnav2">close sub navigation</text> <style type="text/css"> .st0bnbn{fill:#ffffff;} </style> <path id="bx-up-arrow-alt" class="st0bnbn" d="M8.6,5.7l1.5-1.2l0,0l1.5,1.2l6.4,6.4l2.1-2.1L10.1,0L0,10.1l2.1,2.1L8.6,5.7z"/> </svg> </section>  <section class="indexBar"> <button class="indexBarContainer"> <a class="indexBarA" href="/all-products-services.html"> <span>See All Product Services</span> </a> </button> </section> </nav>  <nav id="Nav-Customer-Success" class="Customer-Success SIG-Sub-dropdown"> <p class="SIG-mobile-breadcrumb">Services</p> <section id="Container-Tools-Services" class="SIG-Sub-dropdown-container">  <svg class="mobile-go-back" aria-labelledby="svg-go-back3" version="1.1" id="Layer_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px" viewBox="0 0 27 15.8" style="enable-background:new 0 0 27 15.8;" xml:space="preserve"><style type="text/css">.st0xmmxm{fill-rule:evenodd;clip-rule:evenodd;}</style><g id="arrow-left" transform="translate(-4.498 -10.123)"><path id="Path_367" class="st0xmmxm" d="M13.2,10.5c0.4,0.4,0.4,1.2,0,1.6c0,0,0,0,0,0l-6,6l6,6c0.4,0.4,0.4,1.2,0,1.6s-1.2,0.4-1.6,0l-6.7-6.7c-0.4-0.4-0.4-1.2,0-1.6c0,0,0,0,0,0l6.8-6.8C12,10,12.7,10,13.2,10.5C13.2,10.5,13.2,10.5,13.2,10.5L13.2,10.5z"/><path id="Path_368" class="st0xmmxm" d="M5.6,18c0-0.6,0.5-1.1,1.1-1.1h23.6c0.6,0,1.1,0.5,1.1,1.1s-0.5,1.1-1.1,1.1H6.8C6.1,19.1,5.6,18.6,5.6,18z"/></g></svg> <text id="svg-go-back3">go back</text> <button class="mobile-go-back-txt">Go Back</button> <section> <h2>Testing Services</h2> <ul id="customerFirst"> <li><a href="/services/security-testing.html">Security Testing Services Overview</a></li> <li><a href="/services/penetration-testing.html">Penetration Testing</a></li> <li><a href="/services/security-testing/mobile-application-security-testing.html">Mobile Application Security Testing (MAST)</a></li> </ul> </section> <section> <h2>Program Services</h2> <ul id="customerSecond"> <li><a href="/services/security-program/software-architecture-design.html">Threat & Risk Assessments</a></li> <li><a href="/services/security-program/strategy-planning.html">Program Strategy & Planning</a></li> <li><a href="/training.html">Security Training</a></li> <li><a href="/customer-success/implementation.html" target="_blank">Implementation & Deployment</a></li> </ul> </section> <section> <h2>Audit Services</h2> <ul id="customerThird"> <li><a href="/services/open-source-software-audit.html">Open Source & Security Audits</a></li>  </ul> </section> <section> <a id="navAd" href="/resources/analyst-reports/gartner-magic-quadrant-appsec.html"> <img src="/content/dam/black-duck/en-us/images/Gartner_Magic_Quadrant_AST_2023-final-bg.svg" alt="Gartner Magic Quadrant" class="navAdImg"> <span class="navAdP"> <span class="navAdSpanMain">2023 Gartner® Magic Quadrant™ for AppSec Testing</span> <span class="navAdSpanSub">See why Black Duck is a Leader</span> </span> </a> </section> </section>  <section class="navDefinitions"> <ul class="navDefUl customerFirst"> <li><span>Security Testing Services Overview</span> | Summary of the security testing services offered.</li> <li><span>Penetration Testing</span> | Simulated cyberattacks to identify vulnerabilities in your systems.</li> <li><span>Mobile Application Security Testing (MAST)</span> | Ensuring the security of mobile apps against threats.</li> </ul> <ul class="navDefUl customerSecond">  <li><span>Threat & Risk Assessments</span> | Evaluation of potential security threats and vulnerabilities.</li> <li><span>Program Strategy & Planning</span> | Developing effective strategies for your security program.</li> <li><span>Security Training</span> | Courses and workshops to enhance your security skills and knowledge.</li> <li><span>Implementation & Deployment</span> | Assistance with deploying and integrating security solutions.</li> </ul> <ul class="navDefUl customerThird"> <li><span>Open Source & Security Audits</span> | Evaluations of open source components and overall security posture.</li> </ul>  <svg class="close-sub-nav" aria-labelledby="svg-close-subnav3" version="1.1" id="Layer_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px" viewBox="0 0 20.1 12.2" style="enable-background:new 0 0 20.1 12.2;" xml:space="preserve"> <text id="svg-close-subnav3">close sub navigation</text> <style type="text/css"> .st0bnbn{fill:#ffffff;} </style> <path id="bx-up-arrow-alt" class="st0bnbn" d="M8.6,5.7l1.5-1.2l0,0l1.5,1.2l6.4,6.4l2.1-2.1L10.1,0L0,10.1l2.1,2.1L8.6,5.7z"/> </svg> </section>  <section class="indexBar"> <button class="indexBarContainer"> <a class="indexBarA" href="/all-products-services.html"> <span>See All Product Services</span> </a> </button> </section> </nav>  <nav id="Nav-Resources" class="Resources SIG-Sub-dropdown"> <p class="SIG-mobile-breadcrumb">Resources</p> <section id="Container-Resources" class="SIG-Sub-dropdown-container">  <svg class="mobile-go-back" version="1.1" aria-labelledby="svg-go-back4" id="Layer_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px" viewBox="0 0 27 15.8" style="enable-background:new 0 0 27 15.8;" xml:space="preserve"><style type="text/css">.st0xmmxm{fill-rule:evenodd;clip-rule:evenodd;}</style><g id="arrow-left" transform="translate(-4.498 -10.123)"><path id="Path_367" class="st0xmmxm" d="M13.2,10.5c0.4,0.4,0.4,1.2,0,1.6c0,0,0,0,0,0l-6,6l6,6c0.4,0.4,0.4,1.2,0,1.6s-1.2,0.4-1.6,0l-6.7-6.7c-0.4-0.4-0.4-1.2,0-1.6c0,0,0,0,0,0l6.8-6.8C12,10,12.7,10,13.2,10.5C13.2,10.5,13.2,10.5,13.2,10.5L13.2,10.5z"/><path id="Path_368" class="st0xmmxm" d="M5.6,18c0-0.6,0.5-1.1,1.1-1.1h23.6c0.6,0,1.1,0.5,1.1,1.1s-0.5,1.1-1.1,1.1H6.8C6.1,19.1,5.6,18.6,5.6,18z"/></g></svg> <text id="svg-go-back4">go back</text> <button class="mobile-go-back-txt">Go Back</button> <section> <h2>Latest Updates</h2> <ul id="resourcesFirst"> <li><a href="https://news.blackduck.com">Newsroom</a></li> <li><a href="/blog.html">Blog</a></li>  <li><a href="/resources/cybersecurity-research-center.html">Cybersecurity Research Center</a></li> </ul> </section> <section> <h2>Customer Resources</h2> <ul id="resourcesSecond"> <li><a href="https://community.blackduck.com" target="_blank">Support</a></li> <li><a href="https://documentation.blackduck.com" target="_blank">Documentation</a></li> <li><a href="https://blackduck.skilljar.com" target="_blank">Black Duck Academy</a></li> <li><a href="https://community.blackduck.com/s/global-search/%40uri" target="_blank">Search Knowledge Base </a></li> <li><a href="https://community.blackduck.com/s/synopsys-product-directory" target="_blank">Community Q&A</a></li> </ul> </section> <section> <h2>Other Resources</h2> <ul id="resourcesThird"> <li><a href="/resources/ebooks.html">eBooks</a></li> <li><a href="/resources/case-studies.html">Case Studies</a></li> <li><a href="/resources/analyst-reports.html">Research & Reports</a></li> <li><a href="/resources/webinars.html">Webinars</a></li> <li><a href="/resources/white-papers.html">White Papers</a></li> <li><a href="/glossary.html">AppSec Glossary</a></li> <li><a href="/resources.html">Resource Library</a></li> </ul> </section> <section> <a id="navAd" href="/resources/analyst-reports/gartner-magic-quadrant-appsec.html"> <img src="/content/dam/black-duck/en-us/images/Gartner_Magic_Quadrant_AST_2023-final-bg.svg" alt="Gartner Magic Quadrant" class="navAdImg"> <span class="navAdP"> <span class="navAdSpanMain">2023 Gartner® Magic Quadrant™ for AppSec Testing</span> <span class="navAdSpanSub">See why Black Duck is a Leader</span> </span> </a> </section> </section>  <section class="navDefinitions"> <ul class="navDefUl resourcesFirst"> <li><span>Newsroom</span> | Latest news, press releases, and media coverage about Black Duck.</li> <li><span>Blog</span> | Insights, updates, and expert opinions on application security.</li> <li><span>Cybersecurity Research Center</span> | In-depth studies and findings on cybersecurity topics.</li> </ul> <ul class="navDefUl resourcesSecond"> <li><span>Support</span> | Assistance and troubleshooting for Black Duck products and services.</li> <li><span>Documentation</span> | Detailed guides and manuals for using Black Duck products.</li> <li><span>Black Duck Academy</span> | Educational courses and training on application security.</li> <li><span>Search Knowledge Base </span> | Find answers and solutions in our extensive knowledge repository.</li> <li><span>Community Q&A</span> | Engage with other users and experts to get your questions answered.</li> </ul> <ul class="navDefUl resourcesThird">  <li><span>eBooks</span> | Downloadable resources on various application security topics.</li> <li><span>Case Studies</span> | Real-world examples of how customers use Black Duck solutions.</li> <li><span>Research & Reports</span> | Comprehensive reports and analysis on industry trends.</li> <li><span>Webinars</span> | Engage with experts through sessions to enhance your application security knowledge</li> <li><span>White Papers</span> | Explore in-depth research and insights to guide your security strategies and decisions</li> <li><span>AppSec Glossary</span> | Definitions and explanations of common application security terms.</li> <li><span>Resource Library</span> | A collection of all available resources and materials.</li> </ul>  <svg class="close-sub-nav" aria-labelledby="svg-close-subnav4" version="1.1" id="Layer_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px" viewBox="0 0 20.1 12.2" style="enable-background:new 0 0 20.1 12.2;" xml:space="preserve"> <text id="svg-close-subnav4">close sub navigation</text> <style type="text/css"> .st0bnbn{fill:#ffffff;} </style> <path id="bx-up-arrow-alt" class="st0bnbn" d="M8.6,5.7l1.5-1.2l0,0l1.5,1.2l6.4,6.4l2.1-2.1L10.1,0L0,10.1l2.1,2.1L8.6,5.7z"/> </svg> </section>  <section class="indexBar"> <button class="indexBarContainer"> <a class="indexBarA" href="/all-products-services.html"> <span>See All Product Services</span> </a> </button> </section> </nav> </section> <script src="/etc.clientlibs/synopsys/clientlibs/navigation/header.lc-8f0aa4a80ba59246018a5ed193cfeba3-lc.min.js"></script> </div> <div class="htmlTextOnly aem-GridColumn aem-GridColumn--default--12"> <div class="container "> <section id="a6a4c7084-63fc-43d4-828d-f1b6ba16dfe8" class="html-text-only-component" data-enable-page-css="true"> <style> ul.SIG-Main-Corp li.LihasDropdown a:after, ul.SIG-Main-Corp li.LihasDropdown span:after { background-image: url("data:image/svg+xml,%3Csvg version='1.1' id='Layer_1b' xmlns='http://www.w3.org/2000/svg' xmlns:xlink='http://www.w3.org/1999/xlink' x='0px' y='0px' viewBox='0 0 9 8' style='enable-background:new 0 0 9 8;' xml:space='preserve'%3E%3Cstyle type='text/css'%3E.st0az%7Bfill:%23111C24;%7D%3C/style%3E%3Cpath id='Polygon_2' class='st0az' d='M4.5,8L0,0h9L4.5,8z'/%3E%3C/svg%3E%0A"); } ul.SIG-Sub-ul li.LihasDropdown a:after { background-image: url("data:image/svg+xml,%3Csvg version='1.1' id='Layer_1b' xmlns='http://www.w3.org/2000/svg' xmlns:xlink='http://www.w3.org/1999/xlink' x='0px' y='0px' viewBox='0 0 9 8' style='enable-background:new 0 0 9 8;' xml:space='preserve'%3E%3Cstyle type='text/css'%3E.st0az%7Bfill:%235A2D83;%7D%3C/style%3E%3Cpath id='Polygon_2' class='st0az' d='M4.5,8L0,0h9L4.5,8z'/%3E%3C/svg%3E%0A"); } ul.SIG-Sub-ul li.LihasDropdown.SIG-Sub-active a:after { background-image: url("data:image/svg+xml,%3Csvg version='1.1' id='Layer_1' xmlns='http://www.w3.org/2000/svg' xmlns:xlink='http://www.w3.org/1999/xlink' x='0px' y='0px' viewBox='0 0 9 8' style='enable-background:new 0 0 9 8;' xml:space='preserve'%3E%3Cstyle type='text/css'%3E .st0msmms%7Bfill:%235A2D83;%7D%0A%3C/style%3E%3Cpath id='Polygon_8' class='st0msmms' d='M4.5,0L9,8H0L4.5,0z'/%3E%3C/svg%3E"); } .SIG-Sub-dropdown section.indexBar span:after { background-image: url("data:image/svg+xml,%3Csvg version='1.1' id='Layer_1' xmlns='http://www.w3.org/2000/svg' xmlns:xlink='http://www.w3.org/1999/xlink' x='0px' y='0px' viewBox='0 0 9 7.9' style='enable-background:new 0 0 9 7.9;' xml:space='preserve'%3E%3Cstyle type='text/css'%3E.st0ccv%7Bfill-rule:evenodd;clip-rule:evenodd;fill:%235A2D83;%7D%3C/style%3E%3Cg id='arrow-right-short' transform='translate(-9 -10.123)'%3E%3Cpath id='Path_365' class='st0ccv' d='M12.3,10.3c0.3-0.2,0.7-0.2,1,0l4.4,3.4c0.2,0.1,0.3,0.4,0.1,0.7c0,0.1-0.1,0.1-0.1,0.1l-4.4,3.4c-0.3,0.2-0.7,0.2-1,0c-0.2-0.1-0.3-0.4-0.1-0.7c0-0.1,0.1-0.1,0.1-0.1l3.9-3l-3.9-3c-0.2-0.1-0.3-0.4-0.1-0.7C12.2,10.4,12.3,10.3,12.3,10.3L12.3,10.3z'/%3E%3Cpath id='Path_366' class='st0ccv' d='M9,14.1c0-0.4,0.2-0.7,0.6-0.7h7.2c0.3,0,0.6,0.3,0.6,0.7s-0.2,0.7-0.6,0.7H9.6C9.2,14.8,9,14.5,9,14.1z'/%3E%3C/g%3E%3C/svg%3E%0A"); } #hamburger { background-image: url("data:image/svg+xml,%3C%3Fxml version='1.0' encoding='utf-8'%3F%3E%3C!-- Generator: Adobe Illustrator 25.2.0, SVG Export Plug-In . SVG Version: 6.00 Build 0) --%3E%3Csvg version='1.1' id='Layer_1' xmlns='http://www.w3.org/2000/svg' xmlns:xlink='http://www.w3.org/1999/xlink' x='0px' y='0px' viewBox='0 0 16.1 15' style='enable-background:new 0 0 16.1 15;' xml:space='preserve'%3E%3Cg id='menu' transform='translate(-5.625 -6.75)'%3E%3Cpath id='Path_361' d='M5.6,6.8h16.1V8H5.6V6.8z'/%3E%3Cpath id='Path_362' d='M5.6,13.6h16.1v1.3H5.6V13.6z'/%3E%3Cpath id='Path_363' d='M5.6,20.5h16.1v1.3H5.6V20.5z'/%3E%3C/g%3E%3C/svg%3E%0A"); } @media only screen and (max-width: 1129px) { ul.SIG-Sub-ul li.LihasDropdown a:after, ul.SIG-Main-Corp li.LihasDropdown span:after, ul.SIG-Sub-ul li.LihasDropdown.SIG-Sub-active:after { background-image: url("data:image/svg+xml,%3Csvg version='1.1' id='Layer_1' xmlns='http://www.w3.org/2000/svg' xmlns:xlink='http://www.w3.org/1999/xlink' x='0px' y='0px' viewBox='0 0 9 7.9' style='enable-background:new 0 0 9 7.9;' xml:space='preserve'%3E%3Cstyle type='text/css'%3E.st0ccv%7Bfill-rule:evenodd;clip-rule:evenodd;fill:%23000000;%7D%3C/style%3E%3Cg id='arrow-right-short' transform='translate(-9 -10.123)'%3E%3Cpath id='Path_365' class='st0ccv' d='M12.3,10.3c0.3-0.2,0.7-0.2,1,0l4.4,3.4c0.2,0.1,0.3,0.4,0.1,0.7c0,0.1-0.1,0.1-0.1,0.1l-4.4,3.4c-0.3,0.2-0.7,0.2-1,0c-0.2-0.1-0.3-0.4-0.1-0.7c0-0.1,0.1-0.1,0.1-0.1l3.9-3l-3.9-3c-0.2-0.1-0.3-0.4-0.1-0.7C12.2,10.4,12.3,10.3,12.3,10.3L12.3,10.3z'/%3E%3Cpath id='Path_366' class='st0ccv' d='M9,14.1c0-0.4,0.2-0.7,0.6-0.7h7.2c0.3,0,0.6,0.3,0.6,0.7s-0.2,0.7-0.6,0.7H9.6C9.2,14.8,9,14.5,9,14.1z'/%3E%3C/g%3E%3C/svg%3E%0A"); } .mobile-x-close, #hamburger.mobile-x-close { background-image: url("data:image/svg+xml,%3Csvg class='mobile-x-close' version='1.1' id='Layer_1' xmlns='http://www.w3.org/2000/svg' xmlns:xlink='http://www.w3.org/1999/xlink' x='0px' y='0px' viewBox='0 0 15 15' style='enable-background:new 0 0 15 15;' xml:space='preserve'%3E%3Cg id='close' transform='translate(-6.776 -6.777)'%3E%3Cpath id='Path_364' d='M8.5,7.1c-0.4-0.4-1-0.4-1.4,0c-0.4,0.4-0.4,1,0,1.4l5.8,5.8l-5.8,5.8c-0.4,0.4-0.4,1,0,1.4c0.4,0.4,1,0.4,1.4,0l5.8-5.8l5.8,5.8c0.4,0.4,1,0.4,1.4,0s0.4-1,0-1.4l-5.8-5.8l5.8-5.8c0.4-0.4,0.4-1,0-1.4c-0.4-0.4-1-0.4-1.4,0l-5.8,5.8L8.5,7.1z'/%3E%3C/g%3E%3C/svg%3E"); } } ul.SIG-Sub-ul li.LihasDropdown a:after { background-image: url("data:image/svg+xml,%3Csvg version='1.1' id='Layer_1b' xmlns='http://www.w3.org/2000/svg' xmlns:xlink='http://www.w3.org/1999/xlink' x='0px' y='0px' viewBox='0 0 9 8' style='enable-background:new 0 0 9 8;' xml:space='preserve'%3E%3Cstyle type='text/css'%3E.st0az%7Bfill:%23ffffff;%7D%3C/style%3E%3Cpath id='Polygon_2' class='st0az' d='M4.5,8L0,0h9L4.5,8z'/%3E%3C/svg%3E%0A"); } ul.SIG-Sub-ul li.LihasDropdown.SIG-Sub-active a:after { background-image: url("data:image/svg+xml,%3Csvg version='1.1' id='Layer_1' xmlns='http://www.w3.org/2000/svg' xmlns:xlink='http://www.w3.org/1999/xlink' x='0px' y='0px' viewBox='0 0 9 8' style='enable-background:new 0 0 9 8;' xml:space='preserve'%3E%3Cstyle type='text/css'%3E .st0msmms%7Bfill:%23ffffff;%7D%0A%3C/style%3E%3Cpath id='Polygon_8' class='st0msmms' d='M4.5,0L9,8H0L4.5,0z'/%3E%3C/svg%3E"); } .SIG-Sub-dropdown section.indexBar span:after { background-image: url("data:image/svg+xml,%3Csvg version='1.1' id='Layer_1' xmlns='http://www.w3.org/2000/svg' xmlns:xlink='http://www.w3.org/1999/xlink' x='0px' y='0px' viewBox='0 0 9 7.9' style='enable-background:new 0 0 9 7.9;' xml:space='preserve'%3E%3Cstyle type='text/css'%3E.st0ccv%7Bfill-rule:evenodd;clip-rule:evenodd;fill:%23ffffff;%7D%3C/style%3E%3Cg id='arrow-right-short' transform='translate(-9 -10.123)'%3E%3Cpath id='Path_365' class='st0ccv' d='M12.3,10.3c0.3-0.2,0.7-0.2,1,0l4.4,3.4c0.2,0.1,0.3,0.4,0.1,0.7c0,0.1-0.1,0.1-0.1,0.1l-4.4,3.4c-0.3,0.2-0.7,0.2-1,0c-0.2-0.1-0.3-0.4-0.1-0.7c0-0.1,0.1-0.1,0.1-0.1l3.9-3l-3.9-3c-0.2-0.1-0.3-0.4-0.1-0.7C12.2,10.4,12.3,10.3,12.3,10.3L12.3,10.3z'/%3E%3Cpath id='Path_366' class='st0ccv' d='M9,14.1c0-0.4,0.2-0.7,0.6-0.7h7.2c0.3,0,0.6,0.3,0.6,0.7s-0.2,0.7-0.6,0.7H9.6C9.2,14.8,9,14.5,9,14.1z'/%3E%3C/g%3E%3C/svg%3E%0A"); } text { display:none; } </style> </section> </div> </div> </div> </div> </div> </div> <div class="synopsysContainer responsivegrid site-content aem-GridColumn aem-GridColumn--default--12"> <div class="aem-Grid aem-Grid--12 aem-Grid--default--12 "> <div class="banner image aem-GridColumn aem-GridColumn--default--12"> <style scoped> .c3a60f233-4097-4337-98ed-31a6631143d8.component-banner .desktop-wrapper { background-image: url("/services/security-program/software-architecture-design/_jcr_content/root/synopsyscontainer/banner_top/image.coreimg.svg/1721849062005/header-lime.svg"); } @media only screen and (min-width: 730px) { .desktop-svg{ opacity: 0; } } </style> <style scoped> @media only screen and (max-width: 729px) { .c3a60f233-4097-4337-98ed-31a6631143d8 .dm-mobile{ display: none; } .c3a60f233-4097-4337-98ed-31a6631143d8 .dm-desktop{ display: block; } } </style> <div class="stickyCTAButton" id="stickyCTAButtonID" scoped> <div class="component-buttons align-left"> <p class="bannertxt"> <span id="cloneTitle"></span> <span id="clonePipe">|</span> <span id="cloneSubtitle"></span> </p> <div id="cloneCTA" class="component-button darkButtonRollover"> </div> </div> <div id="closeStickyBanner">✕</div> </div> <section id="banner-af785b1003" class="component-banner c3a60f233-4097-4337-98ed-31a6631143d8 transparent sticky-banner" data-card-type="banner" data-text="Understand the internal and external security risks your AppSec program needs to address " data-link="/content/black-duck/en-us/contact-sales.html"> <div class="desktop-wrapper "> <div class="text-overlay flex-container content-align-left text-align-left cropped-img"> <div class="content-wrapper text-width-60 paddingMedium "> <div class="text-wrapper contentValignCenter"> <div class="component-text"> <h1 class="title"><span class="text-size-smaller" style="color: #fff;"><p>Application Security Threat and Risk Assessment</p></span></h1> <div class="component-text"> <p>Understand the internal and external security risks your AppSec program needs to address</p> <div class="component-button padding-10" style="background-color: #fcaf1a"> <a href="/contact-sales.html">Ready to get started? </a> </div> </div> </div> </div> <div class="shapeTbg slash transparent" style="background-color: #5A2A82"></div> </div> <div class="foreground-image-wrapper imageOverlayRight "> </div> </div> <div class="shapeTbg slash transparent text-width-60" style="background-color: #5A2A82"></div> </div> </section> </div> <div class="breadcrumb aem-GridColumn aem-GridColumn--default--12"> <div class="container "> <section class="component-breadcrumb "> <nav id="primary_nav_wrap" class="clearfix"> <ul> <li><a class="parent" href="/">Application Security</a> <div class="icon-dropdown-arrow"></div><ul class="dropdown-menu" role="menu"> <li><a class="subBreadcrumb" href="/code-sight.html">Code Sight</a></li> <li><a class="subBreadcrumb" href="/dast.html">Continuous Dynamic</a></li> <li><a class="subBreadcrumb" href="/services.html">Services</a></li> <li><a class="subBreadcrumb" href="/blog.html">Blog Home</a></li> </ul> </li> <li><a class="parent" href="/services.html">Services</a> </li> <li><a class="parent" href="/services/security-program.html">Application Security & Risk Management Services</a> </li> <li><a class="parent" href="/services/security-program/software-architecture-design.html">Application Security Threat & Risk Assessment</a> </li> </ul> </nav> </section> </div> </div> <div class="htmlTextOnly aem-GridColumn aem-GridColumn--default--12"> <div class="container "> <section id="aa31a94ab-6b9b-48bf-9a7d-9abd84a8b5fb" class="html-text-only-component" data-enable-page-css="true"> <style> @media only screen and (min-width: 900px) { .component-card-container .component-image { height:150px; } } @media only screen and (min-width: 730px) and (max-width: 899px) { .component-card-container .component-image { height:100px; } } </style> </section> </div> </div> <div class="imageTextCta image aem-GridColumn aem-GridColumn--default--12"> <div class="background-component vert-pad-top-md vert-pad-bottom-md"> <div class="container "> <section class="component-imageTextCta"> <div class="container"> <div class="row"> <div class="col-xs-12 col-sm-6 col-sm-push-6 img-col"> <div class="cmp-video" data-video-id="6359126908112" data-provider="Brightcove" data-mode="modal" data-video-lang="6415867320001"> <script> var contentSegment= "4:M:75-100"; var contentType="video"; var globalSingleton = false; var globalSingleton25 = false; var globalSingleton75 = false; var globalSingletonPause = false; var globalSingletonPlay = false; var globalSingletonEnded= false; $('body').on('click', '.video-button', function(){ setTimeout(function(){ if($('.cmp-video__player--modal video').attr('id')) { if(globalSingletonPlay == false) { var cmpPlayerID = $('.cmp-video__player--modal video').attr('id'); var myPlayer = videojs(cmpPlayerID); globalSingletonPlay=true; window.adobeDataLayer = window.adobeDataLayer || []; window.adobeDataLayer.push({ event: "videoStarts", web: { webPageDetails: { URL: window.location.href, name:'', } },//end of web _softwareintegritygroupinc:{ videos:{ videoName: myPlayer.mediainfo.name, contentSegment:"1:M:0-25", videoStarts: { value: 1 } },//video web:{ webPageDetails:{ contentType:contentType, },//end of web page details }//end of web }//synopsys }//end of push ); } var cmpPlayerID = $('.cmp-video__player--modal video').attr('id'); var progressFlag50 = false; var progressFlag25 = false; var progressFlag75 = false; videojs.getPlayer(cmpPlayerID).on('timeupdate',function(){ var myPlayer = this; var name=myPlayer.mediainfo.name; var duration = myPlayer.duration(); var currTime = myPlayer.currentTime(); var perc = (currTime / duration * 100).toFixed(2); if(perc <=25.55) contentSegment="1:M:0-25"; if(perc >25.55 && perc<=50.55) contentSegment="2:M:25-50"; if(perc >50.55 && perc<=75.55) contentSegment="3:M:50-75"; if(perc >75.55 && perc<=100.55) contentSegment="4:M:75-100"; var isPaused = myPlayer.paused(); if(isPaused && globalSingletonPause==false ) { globalSingletonPause=true; window.adobeDataLayer = window.adobeDataLayer || []; window.adobeDataLayer.push({ event: "videoPauses", web: { webPageDetails: { URL: window.location.href, name: '', } }, _softwareintegritygroupinc:{ videos:{ videoName:name, contentSegment: contentSegment, videoTimeSpent: { value: currTime }, videoPauses: { value: 1 } }, web:{ webPageDetails:{ contentType: contentType, }, } } } ); } var isEnded= myPlayer.ended(); if(isEnded && globalSingletonEnded==false) { globalSingletonEnded=true; window.adobeDataLayer = window.adobeDataLayer || []; window.adobeDataLayer.push({ event: "videoCompletes", web: { webPageDetails: { URL: window.location.href, name: '', } }, _softwareintegritygroupinc:{ videos:{ videoName: name, contentSegment: contentSegment, videoTimeSpent: { value: currTime }, videoCompletes: { value: 1 }, videoSegmentViewed: { value: 1 } }, web:{ webPageDetails:{ contentType:contentType, }, } } } ); } if( perc >= 50 && perc < 50.55 && globalSingleton == false) { globalSingleton= true; window.adobeDataLayer = window.adobeDataLayer || []; window.adobeDataLayer.push({ event: "videoMilestone50", web: { webPageDetails: { URL: window.location.href, name: '', } }, _softwareintegritygroupinc:{ videos:{ videoName: name, contentSegment:contentSegment, videoTimeSpent: { value: currTime }, videoMilestone50: { value: 1 }, videoSegmentViewed: { value: 1 } }, web:{ webPageDetails:{ contentType:contentType, }, } } }); } if( perc >= 25 && perc < 25.55 && globalSingleton25 == false) { globalSingleton25= true; window.adobeDataLayer = window.adobeDataLayer || []; window.adobeDataLayer.push({ event: "videoMilestone25", web: { webPageDetails: { URL: window.location.href, name: '', } }, _softwareintegritygroupinc:{ videos:{ videoName: name, contentSegment: contentSegment, videoTimeSpent: { value: currTime }, videoMilestone25: { value: 1 }, videoSegmentViewed: { value: 1 } }, web:{ webPageDetails:{ contentType: contentType, }, } } }); } if( perc >= 75 && perc < 75.55 && globalSingleton75 == false) { globalSingleton75= true; window.adobeDataLayer = window.adobeDataLayer || []; window.adobeDataLayer.push({ event: "videoMilestone75", web: { webPageDetails: { URL: window.location.href, name: '', } }, _softwareintegritygroupinc:{ videos:{ videoName: name, contentSegment:contentSegment, videoTimeSpent: { value: currTime }, videoMilestone75: { value: 1 }, videoSegmentViewed: { value: 1 } }, web:{ webPageDetails:{ contentType:contentType, }, } } }); } }); } },1500); globalSingleton= false; globalSingleton25 = false; globalSingleton75 = false; globalSingletonPause = false; globalSingletonPlay = false; globalSingletonEnded= false; }); </script> <div class="cmp-video__player-container embed-responsive embed-responsive-16by9"> <div class="cmp-video__thumbnail"> <div style="display: none" class="cmp-video__thumbnail-img cmp-video__thumbnail-img--authored"></div> <div class="video-button-container"> <div class="video-button"> <img src="/content/dam/black-duck/play-button-arrow-sm.svg"/> </div> </div> <img class="cmp-video__thumbnail-img cmp-video__thumbnail-img--empty" src="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAQAAAC1HAwCAAAAC0lEQVR42mP8/x8AAwMCAO+ip1sAAAAASUVORK5CYII=" alt=""/> </div> <div class="cmp-video__player--inline embed-responsive-item"></div> </div> <div class="modal-template" style="display: none"> <div class="modal fade modal--video" tabindex="-1" role="dialog" aria-hidden="true"> <div class="modal-dialog"> <div class="modal-content"> <div class="modal-body"> <button type="button" class="close" data-dismiss="modal" aria-hidden="true">×</button> <div class="embed-responsive embed-responsive-16by9"> <div class="cmp-video__player--modal embed-responsive-item"></div> </div> </div> </div> </div> </div> </div> </div> </div> <div class="col-xs-12 col-sm-6 text-col col-sm-pull-6 "> <h2 class="title"> <span class="text-size-normal" style="color: #5A2A82;"> <span> <br/> </span> </span> <span class="text-size-smaller" style="color: #3c3c3c;"> <span> </span> </span> </h2> <div class="description"> <p>Black Duck security risk assessments help you identify missing or weak security controls, understand secure design best practices, and mitigate security flaws that will increase your risk of a breach.</p> </div> <div class="component-buttons align-left"> </div> </div> </div> </div> </section> </div> </div> </div> <div class="column aem-GridColumn aem-GridColumn--default--12"> <div class="background-component light-grey-bg vert-pad-top-md vert-pad-bottom-md"> <div class="container "> <section id="column-2f7472fa65" class="component-column row "> <div class="col-xs-12 col-sm-4 "> <div class="aem-Grid aem-Grid--12 aem-Grid--default--12 "> <div class="factoid aem-GridColumn aem-GridColumn--default--12"> <div class="background-component vert-pad-top-sm "> <div class="container "> <section class="component-factoid"> <div class="component-textcomp"> <div class="component-text"> </div> </div> <section class="component-column row"> <div class="col-xs-12 col-factoid-1"> <div class="factoid-wrapper"> <div class="richTextEditor"> <div class="container "> <section class="component-rtecomp"> <div class="component-rte"> <h2 class="factoidNumber"><span style="color:#4c9ec9;">50%</span></h2> <p class="factoidLabel">of security incidents are caused by design flaws</p> </div> </section> </div> </div> </div> </div> </section> </section> </div> </div> </div> </div> </div> <div class="col-xs-12 col-sm-8 "> <div class="aem-Grid aem-Grid--12 aem-Grid--default--12 "> <div class="richTextEditor aem-GridColumn aem-GridColumn--default--12"> <div class="container "> <section class="component-rtecomp"> <div class="component-rte"> <h2>Build security into application design</h2> <p>With increasing pressure to build and release software faster than ever, security controls that should be addressed early in the <a href="/glossary/what-is-sdlc.html">software development life cycle (SDLC)</a> are often not addressed until it’s far too late. </p> <p>Failing to build security controls into applications in the design phase causes:</p> <ul> <li>Inadequate protection against malicious attackers</li> <li>Weaker defenses against outside and inside threats</li> <li>Increased possibility of damaging threat events like data breaches</li> </ul> </div> </section> </div> </div> </div> </div> </section> </div> </div> </div> <div class="richTextEditor aem-GridColumn aem-GridColumn--default--12"> <div class="background-component vert-pad-top-md "> <div class="container "> <section class="component-rtecomp"> <div class="component-rte"> <h2><span class="text-color-black"><span class="text-color-synopsys-purple">How do application risk assessments minimize security incidents?</span></span></h2> <p>Application risk assessments allow you to:</p> </div> </section> </div> </div> </div> <div class="column aem-GridColumn aem-GridColumn--default--12"> <div class="background-component vert-pad-top-sm vert-pad-bottom-md"> <div class="container "> <section id="4Column" class="component-column row divider-row "> <div class="col-xs-12 col-sm-3 divider-spacing-medium-40 four"> <div class="aem-Grid aem-Grid--12 aem-Grid--default--12 "> <div class="column aem-GridColumn aem-GridColumn--default--12"> <div class="container "> <section id="column-0555f0444f" class="component-column row "> <div class="col-xs-12 col-sm-8 "> <div class="aem-Grid aem-Grid--12 aem-Grid--default--12 "> <div class="text aem-GridColumn aem-GridColumn--default--12"> <div class="container "> <section class="component-textcomp text-align-left"> <div class="component-text"> <h2 class="title "> <span class="text-size-normal" style="color: #5A2A82;"> Identify assets </span> </h2> </div> <div class="component-text"> </div> </section> </div> </div> </div> </div> <div class="col-xs-12 col-sm-4 "> <div class="aem-Grid aem-Grid--12 aem-Grid--default--12 "> <div class="htmlTextOnly aem-GridColumn aem-GridColumn--default--12"> <div class="container "> <section id="a210b4265-6c76-47b8-9b0c-cbfeff5b2a9d" class="html-text-only-component"> <style scoped> svg { color: #5A2D83; font-size: 60px; padding: 5px 0; } </style> <i class="fa-light fa-magnifying-glass"></i> </section> </div> </div> </div> </div> </section> </div> </div> <div class="text aem-GridColumn aem-GridColumn--default--12"> <div class="container "> <section class="component-textcomp "> <div class="component-text"> <h2 class="title "> <span style="color: ;"> </span> </h2> </div> <div class="component-text"> <p>Document the relationship of all external and internal assets such as networks, servers, applications, architecture, data centers, tools, and more.                </p> </div> </section> </div> </div> </div> </div> <div class="snps-col-divider divider-spacing-medium-40 col"><div class="vl"></div></div> <div class="col-xs-12 col-sm-3 divider-spacing-medium-40 four"> <div class="aem-Grid aem-Grid--12 aem-Grid--default--12 "> <div class="column aem-GridColumn aem-GridColumn--default--12"> <div class="container "> <section id="column-846b31b226" class="component-column row "> <div class="col-xs-12 col-sm-8 "> <div class="aem-Grid aem-Grid--12 aem-Grid--default--12 "> <div class="text aem-GridColumn aem-GridColumn--default--12"> <div class="container "> <section class="component-textcomp text-align-left"> <div class="component-text"> <h2 class="title "> <span class="text-size-normal" style="color: #5A2A82;"> Create risk profiles </span> </h2> </div> <div class="component-text"> </div> </section> </div> </div> </div> </div> <div class="col-xs-12 col-sm-4 "> <div class="aem-Grid aem-Grid--12 aem-Grid--default--12 "> <div class="htmlTextOnly aem-GridColumn aem-GridColumn--default--12"> <div class="container "> <section id="a9c3474a6-08e0-4b81-bb6d-7dda5c7b8fad" class="html-text-only-component"> <style scoped> svg { color: #5A2D83; font-size: 60px; padding: 5px 0; } </style> <i class="fa-light fa-shield-exclamation"></i> </section> </div> </div> </div> </div> </section> </div> </div> <div class="text aem-GridColumn aem-GridColumn--default--12"> <div class="container "> <section class="component-textcomp "> <div class="component-text"> <h2 class="title "> <span style="color: ;"> </span> </h2> </div> <div class="component-text"> <p>Risk profiles help you discover how risk-adverse or tolerant each asset is.                </p> </div> </section> </div> </div> </div> </div> <div class="snps-col-divider divider-spacing-medium-40 col"><div class="vl"></div></div> <div class="col-xs-12 col-sm-3 divider-spacing-medium-40 four"> <div class="aem-Grid aem-Grid--12 aem-Grid--default--12 "> <div class="column aem-GridColumn aem-GridColumn--default--12"> <div class="container "> <section id="column-e45b9f09b1" class="component-column row "> <div class="col-xs-12 col-sm-8 "> <div class="aem-Grid aem-Grid--12 aem-Grid--default--12 "> <div class="text aem-GridColumn aem-GridColumn--default--12"> <div class="container "> <section class="component-textcomp text-align-left"> <div class="component-text"> <h2 class="title "> <span class="text-size-normal" style="color: #5A2A82;"> Understand security controls </span> </h2> </div> <div class="component-text"> </div> </section> </div> </div> </div> </div> <div class="col-xs-12 col-sm-4 "> <div class="aem-Grid aem-Grid--12 aem-Grid--default--12 "> <div class="htmlTextOnly aem-GridColumn aem-GridColumn--default--12"> <div class="container "> <section id="ad18d7630-6aa4-4ece-9cd3-038284bc759d" class="html-text-only-component"> <style scoped> svg { color: #5A2D83; font-size: 60px; padding: 5px 0; } </style> <i class="fa-light fa-sliders"></i> </section> </div> </div> </div> </div> </section> </div> </div> <div class="text aem-GridColumn aem-GridColumn--default--12"> <div class="container "> <section class="component-textcomp "> <div class="component-text"> <h2 class="title "> <span style="color: ;"> </span> </h2> </div> <div class="component-text"> <p>Discover the current state of security controls (access control, firewall, intrusion detection, antivirus, etc.) and what data is stored, transmitted, and generated by each asset.                 </p> </div> </section> </div> </div> </div> </div> <div class="snps-col-divider divider-spacing-medium-40 col"><div class="vl"></div></div> <div class="col-xs-12 col-sm-3 divider-spacing-medium-40 four"> <div class="aem-Grid aem-Grid--12 aem-Grid--default--12 "> <div class="column aem-GridColumn aem-GridColumn--default--12"> <div class="container "> <section id="column-5469d46a77" class="component-column row "> <div class="col-xs-12 col-sm-8 "> <div class="aem-Grid aem-Grid--12 aem-Grid--default--12 "> <div class="text aem-GridColumn aem-GridColumn--default--12"> <div class="container "> <section class="component-textcomp text-align-left"> <div class="component-text"> <h2 class="title "> <span class="text-size-normal" style="color: #5A2A82;"> Prioritize remediation </span> </h2> </div> <div class="component-text"> </div> </section> </div> </div> </div> </div> <div class="col-xs-12 col-sm-4 "> <div class="aem-Grid aem-Grid--12 aem-Grid--default--12 "> <div class="htmlTextOnly aem-GridColumn aem-GridColumn--default--12"> <div class="container "> <section id="a145bf9c3-eaf4-4c28-80b8-35ce181c202b" class="html-text-only-component"> <style scoped> svg { color: #5A2D83; font-size: 60px; padding: 5px 0; } </style> <i class="fa-light fa-ranking-star"></i> </section> </div> </div> </div> </div> </section> </div> </div> <div class="text aem-GridColumn aem-GridColumn--default--12"> <div class="container "> <section class="component-textcomp "> <div class="component-text"> <h2 class="title "> <span style="color: ;"> </span> </h2> </div> <div class="component-text"> <p>Use risk rankings to assess the business impacts and prioritize remediation planning.                </p> </div> </section> </div> </div> </div> </div> </section> </div> </div> </div> <div class="richTextEditor aem-GridColumn aem-GridColumn--default--12"> <div class="background-component vert-pad-top-md "> <div class="container "> <section class="component-rtecomp"> <div class="component-rte"> <h2 style="text-align: center;">Evaluate application risk from different vantage points</h2> <p style="text-align: center;">Threats and weaknesses come in different forms, from both external and internal sources and through a variety of systems, people, and processes. To get the most accurate view of the risk facing your applications, it’s important to look from different angles. </p> </div> </section> </div> </div> </div> <div class="cardContainer aem-GridColumn aem-GridColumn--default--12"> <div class="background-component vert-pad-top-xs vert-pad-bottom-md"> <div class="container "> <section id="cardContainer-e20328ed42" class="component-card-container col-2 card-size-large"> <div class="row"> <div class="col-xs-12"> </div> </div> <div class="row"> <div class="card-col col-xs-12 col-sm-6"> <div> <div class="aem-Grid aem-Grid--12 aem-Grid--default--12 "> <div class="product-card image aem-GridColumn aem-GridColumn--default--12"> <section class="component-card-a no-link" data-link="/content/black-duck/en-us/services/security-program/software-architecture-design/threat-modeling.html"> <div class="component-text"> <h4 class="title"> External security threats </h4> <h5 class="subtitle"> </h5> </div> <div> <div class="card-img svg-bg"> <div class="component-image"> <div data-asset-id="10954907-08dc-4f43-aa98-404e74e490dd" id="product-card-7e3f4fe112" class="cmp-image" itemscope itemtype="http://schema.org/ImageObject"> <img src="/services/security-program/software-architecture-design/_jcr_content/root/synopsyscontainer/cardcontainer_107036/colLeft/carda.coreimg.svg/1725907312442/icon-sig-security-control-design-analysis.svg" loading="lazy" class="img-responsive _none_ svg" itemprop="contentUrl" alt="threat modeling"/> </div> </div> </div> </div> <div class="component-text"> <h4 class="heading"> Examine risk from an outside-in view to discover external component weaknesses </h4> <p> Threat modeling looks beyond canned and well-known threats to examine how the external components you rely on to build and run your applications can be susceptible to secure design violations, control misconfigurations, security control omissions, or misuse. </p> <a href="/services/security-program/software-architecture-design/threat-modeling.html"> Learn more about threat modeling </a> </div> </section> </div> </div> </div> </div> <div class="card-col col-xs-12 col-sm-6"> <div> <div class="aem-Grid aem-Grid--12 aem-Grid--default--12 "> <div class="product-card image aem-GridColumn aem-GridColumn--default--12"> <section class="component-card-a no-link" data-link="/content/black-duck/en-us/services/security-program/software-architecture-design/risk-analysis.html"> <div class="component-text"> <h4 class="title"> Internal architecture risks </h4> <h5 class="subtitle"> </h5> </div> <div> <div class="card-img svg-bg"> <div class="component-image"> <div data-asset-id="aca2264f-eb4e-45db-a78d-abba343e1dd0" id="product-card-0bf7be28aa" class="cmp-image" itemscope itemtype="http://schema.org/ImageObject"> <img src="/services/security-program/software-architecture-design/_jcr_content/root/synopsyscontainer/cardcontainer_107036/colRight/carda.coreimg.svg/1729801908923/icon-sig-architecture-and-design.svg" loading="lazy" class="img-responsive _none_ svg" itemprop="contentUrl" alt="internal architecture risks"/> </div> </div> </div> </div> <div class="component-text"> <h4 class="heading"> Inspect architectural risk from an inside-out view to discover deep-seated design flaws </h4> <p> Architecture risk assessments use known attack tactics and include a deep dependency analysis. Discover the relationships between your major components, assets, and threat agents to find system flaws in your application’s design. </p> <a href="/services/security-program/software-architecture-design/risk-analysis.html"> Learn more about architecture risks </a> </div> </section> </div> </div> </div> </div> </div> </section> </div> </div> </div> <div class="column aem-GridColumn aem-GridColumn--default--12"> <div class="background-component vert-pad-top-md vert-pad-bottom-md"> <div class="container "> <section id="column-410d3d7b9c" class="component-column row "> <div class="col-xs-12 col-sm-6 "> <div class="aem-Grid aem-Grid--12 aem-Grid--default--12 "> <div class="htmlTextOnly aem-GridColumn aem-GridColumn--default--12"> <div class="container "> <section id="ab2b1f784-0fff-464f-ad32-0b5e59a0e124" class="html-text-only-component"> <style scoped> svg { color:#5A2D83; font-size:190px; width:100%; padding:15px 0; } </style> <i class="fa-sharp fa-light fa-radar"></i> </section> </div> </div> </div> </div> <div class="col-xs-12 col-sm-6 "> <div class="aem-Grid aem-Grid--12 aem-Grid--default--12 "> <div class="imageTextCta image aem-GridColumn aem-GridColumn--default--12"> <div class="container "> <section class="component-imageTextCta"> <div class="component-no-media"> <h2 class="title"> <span class="text-size-normal" style="color: #5A2A82;"> <span> Uncover design flaws early in the SDLC <br/> </span> </span> <span class="text-size-smaller" style="color: #3c3c3c;"> <span> </span> </span> </h2> <div class="description"> <p>By creating threat models for external assets and components like your APIs, cloud infrastructure, and hosted data centers, you can begin to anticipate new forms of attacks and prioritize application risks by factors such as threats by likelihood.</p> <p>An architectural risk assessment dives deeper by mapping and analyzing the correlation between threats, internal assets, and design structure to expose system flaws scattered throughout your application’s architecture.<br /> </p> <p>Examining your application’s design through threat modeling and architectural risk assessments helps you uncover design flaws early in the SDLC that traditional testing methods often miss.</p> </div> <div class="component-buttons align-left"> </div> </div> </section> </div> </div> </div> </div> </section> </div> </div> </div> <div class="column aem-GridColumn aem-GridColumn--default--12"> <div class="background-component vert-pad-top-md vert-pad-bottom-md"> <div class="container "> <section id="column-8243546e9f" class="component-column row "> <div class="col-xs-12 col-sm-6 "> <div class="aem-Grid aem-Grid--12 aem-Grid--default--12 "> <div class="imageTextCta image aem-GridColumn aem-GridColumn--default--12"> <div class="container "> <section class="component-imageTextCta"> <div class="component-no-media"> <h2 class="title"> <span class="text-size-normal" style="color: #5A2A82;"> <span> Prioritize fixes by ranking risks <br/> </span> </span> <span class="text-size-smaller" style="color: #3c3c3c;"> <span> </span> </span> </h2> <div class="description"> <p>It’s unrealistic to think that all security flaws can be fixed immediately. That’s why it’s important to rank your risks to understand the corresponding business impacts.</p> <p>Once armed with risk insights, you can build a prioritized remediation plan that minimizes risks even when budget and resources are limited.</p> </div> <div class="component-buttons align-left"> </div> </div> </section> </div> </div> </div> </div> <div class="col-xs-12 col-sm-6 "> <div class="aem-Grid aem-Grid--12 aem-Grid--default--12 "> <div class="htmlTextOnly aem-GridColumn aem-GridColumn--default--12"> <div class="container "> <section id="a103d02bb-3704-444f-9428-4013b5d5cab9" class="html-text-only-component"> <style scoped> svg { color:#5A2D83; font-size:190px; width:100%; padding:15px 0; } </style> <i class="fa-light fa-ranking-star"></i> </section> </div> </div> </div> </div> </section> </div> </div> </div> <div class="column aem-GridColumn aem-GridColumn--default--12"> <div class="background-component vert-pad-top-md vert-pad-bottom-md"> <div class="container "> <section id="column-f8b5da7b54" class="component-column row "> <div class="col-xs-12 col-sm-6 "> <div class="aem-Grid aem-Grid--12 aem-Grid--default--12 "> <div class="htmlTextOnly aem-GridColumn aem-GridColumn--default--12"> <div class="container "> <section id="a1bd11c6e-9103-450a-be7f-7ac0472c392a" class="html-text-only-component"> <style scoped> svg { color:#5A2D83; font-size:190px; width:100%; padding:15px 0; } </style> <i class="fa-light fa-list-check"></i> </section> </div> </div> </div> </div> <div class="col-xs-12 col-sm-6 "> <div class="aem-Grid aem-Grid--12 aem-Grid--default--12 "> <div class="imageTextCta image aem-GridColumn aem-GridColumn--default--12"> <div class="container "> <section class="component-imageTextCta"> <div class="component-no-media"> <h2 class="title"> <span class="text-size-normal" style="color: #5A2A82;"> <span> Protect data while meeting compliance demands <br/> </span> </span> <span class="text-size-smaller" style="color: #3c3c3c;"> <span> </span> </span> </h2> <div class="description"> <p>Any organization creating, storing, and transmitting confidential or personal information needs to be sure it’s also protecting its most critical data.</p> <p>Whether you’re trying to meet a compliance requirement such as HIPAA, PCI-DSS, or FISMA, or you’re simply interested in implementing data security best practices, risk assessments will help you implement the highest standards of security controls to protect your data.</p> </div> <div class="component-buttons align-left"> </div> </div> </section> </div> </div> </div> </div> </section> </div> </div> </div> <div class="richTextEditor aem-GridColumn aem-GridColumn--default--12"> <div class="background-component light-grey-bg vert-pad-top-md "> <div class="container "> <section class="component-rtecomp"> <div class="component-rte"> <h3 style="text-align: center;">Related content</h3> </div> </section> </div> </div> </div> <div class="column aem-GridColumn aem-GridColumn--default--12"> <div class="background-component light-grey-bg vert-pad-top-xs vert-pad-bottom-sm"> <div class="container "> <section id="column-d5b20ebed4" class="component-column row "> <div class="col-xs-12"> <div class="aem-Grid aem-Grid--12 aem-Grid--default--12 "> <div class="experiencefragment aem-GridColumn aem-GridColumn--default--12"> <div id="experiencefragment-3f65e5b47b" class="cmp-experiencefragment cmp-experiencefragment--manage-risk"> <div class="xf-content-height"> <div class="aem-Grid aem-Grid--12 aem-Grid--default--12 "> <div class="cardContainer aem-GridColumn aem-GridColumn--default--12"> <div class="container "> <section id="cardContainer-d45a1c3249" class="component-card-container col-3 card-size-small"> <div class="row"> <div class="col-xs-12"> </div> </div> <div class="row"> <div class="card-col col-xs-12 col-sm-4"> <div> <div class="aem-Grid aem-Grid--12 aem-Grid--default--12 "> <div class="assetCard image aem-GridColumn aem-GridColumn--default--12"> <section class="component-card-b no-link" data-card-type="asset-card" data-link="/content/black-duck/en-us/resources/white-papers/threat-modeling-best-practices.html"> <div class="flag" style="background-color: #fcaf1a;"> <div> <span class="text">White paper</span> </div> <div class="triangle" style="background: linear-gradient(to right bottom, #fcaf1a 50%, transparent 50%);"></div> </div> <div class="image-wrapper "> <div class="card-img "> <div class="component-image"> <div data-asset-id="ff91ddda-452a-4c1e-8c90-30e567a3c307" id="assetCard-af3da1ca31" class="cmp-image" itemscope itemtype="http://schema.org/ImageObject"> <img srcset="/content/experience-fragments/black-duck/en-us/pages/products/software-integrity/Solutions/manage-risk/threat-risk/_jcr_content/root/cardcontainer/colLeft/cardb_copy_239479332.coreimg.82.375.png/1726504975658/cover-threat-modeling-decoded.png 375w,/content/experience-fragments/black-duck/en-us/pages/products/software-integrity/Solutions/manage-risk/threat-risk/_jcr_content/root/cardcontainer/colLeft/cardb_copy_239479332.coreimg.82.480.png/1726504975658/cover-threat-modeling-decoded.png 480w,/content/experience-fragments/black-duck/en-us/pages/products/software-integrity/Solutions/manage-risk/threat-risk/_jcr_content/root/cardcontainer/colLeft/cardb_copy_239479332.coreimg.82.730.png/1726504975658/cover-threat-modeling-decoded.png 730w,/content/experience-fragments/black-duck/en-us/pages/products/software-integrity/Solutions/manage-risk/threat-risk/_jcr_content/root/cardcontainer/colLeft/cardb_copy_239479332.coreimg.82.992.png/1726504975658/cover-threat-modeling-decoded.png 992w,/content/experience-fragments/black-duck/en-us/pages/products/software-integrity/Solutions/manage-risk/threat-risk/_jcr_content/root/cardcontainer/colLeft/cardb_copy_239479332.coreimg.82.1200.png/1726504975658/cover-threat-modeling-decoded.png 1200w" src="/content/experience-fragments/black-duck/en-us/pages/products/software-integrity/Solutions/manage-risk/threat-risk/_jcr_content/root/cardcontainer/colLeft/cardb_copy_239479332.coreimg.png/1726504975658/cover-threat-modeling-decoded.png" loading="lazy" class="img-responsive _none_ " itemprop="contentUrl" width="1600" height="960" alt="Threat Modeling white paper"/> </div> </div> </div> </div> <div class="component-text card-text"> <h4 class="heading"> <span class="text-size-smaller"> Threat Modeling Decoded </span> </h4> <p> </p> <a href="/resources/white-papers/threat-modeling-best-practices.html"> Get the white paper </a> </div> </section> </div> <div class="text aem-GridColumn aem-GridColumn--default--12"> <div class="container "> <section class="component-textcomp "> <div class="component-text"> <h2 class="title "> <span style="color: ;"> </span> </h2> </div> <div class="component-text"> </div> </section> </div> </div> <div class="assetCard image aem-GridColumn aem-GridColumn--default--12"> <section class="component-card-b no-link" data-card-type="asset-card" data-link="/content/black-duck/en-us/resources/analyst-reports/software-vulnerability-trends.html"> <div class="flag" style="background-color: #00b2a9;"> <div> <span class="text">Report</span> </div> <div class="triangle" style="background: linear-gradient(to right bottom, #00b2a9 50%, transparent 50%);"></div> </div> <div class="image-wrapper "> <div class="card-img "> <div class="component-image"> <div data-asset-id="9b50dc7b-986c-4cfa-a6bc-bcc6cf445a06" id="assetCard-700b7e6ff5" class="cmp-image" itemscope itemtype="http://schema.org/ImageObject"> <img srcset="/content/experience-fragments/black-duck/en-us/pages/products/software-integrity/Solutions/manage-risk/threat-risk/_jcr_content/root/cardcontainer/colLeft/cardb.coreimg.82.375.jpeg/1731414647495/software-vulnerability-snapshot-cover.jpeg 375w,/content/experience-fragments/black-duck/en-us/pages/products/software-integrity/Solutions/manage-risk/threat-risk/_jcr_content/root/cardcontainer/colLeft/cardb.coreimg.82.480.jpeg/1731414647495/software-vulnerability-snapshot-cover.jpeg 480w,/content/experience-fragments/black-duck/en-us/pages/products/software-integrity/Solutions/manage-risk/threat-risk/_jcr_content/root/cardcontainer/colLeft/cardb.coreimg.82.730.jpeg/1731414647495/software-vulnerability-snapshot-cover.jpeg 730w,/content/experience-fragments/black-duck/en-us/pages/products/software-integrity/Solutions/manage-risk/threat-risk/_jcr_content/root/cardcontainer/colLeft/cardb.coreimg.82.992.jpeg/1731414647495/software-vulnerability-snapshot-cover.jpeg 992w,/content/experience-fragments/black-duck/en-us/pages/products/software-integrity/Solutions/manage-risk/threat-risk/_jcr_content/root/cardcontainer/colLeft/cardb.coreimg.82.1200.jpeg/1731414647495/software-vulnerability-snapshot-cover.jpeg 1200w" src="/content/experience-fragments/black-duck/en-us/pages/products/software-integrity/Solutions/manage-risk/threat-risk/_jcr_content/root/cardcontainer/colLeft/cardb.coreimg.jpeg/1731414647495/software-vulnerability-snapshot-cover.jpeg" loading="lazy" class="img-responsive _none_ " itemprop="contentUrl" width="1600" height="960" alt title="Software Vulnerability Snapshot Report cover"/> <meta itemprop="caption" content="Software Vulnerability Snapshot Report cover"/> </div> </div> </div> </div> <div class="component-text card-text"> <h4 class="heading"> <span class="text-size-smaller"> Software Vulnerability Snapshot </span> </h4> <p> </p> <a href="/resources/analyst-reports/software-vulnerability-trends.html"> Download the report </a> </div> </section> </div> </div> </div> </div> <div class="card-col col-xs-12 col-sm-4"> <div> <div class="aem-Grid aem-Grid--12 aem-Grid--default--12 "> <div class="assetCard image aem-GridColumn aem-GridColumn--default--12"> <section class="component-card-b no-link" data-card-type="asset-card" data-text="Chart a systematic path to your security goals" data-link="/content/black-duck/en-us/services/security-program/maturity-action-plan.html" data-new-tab="true"> <div class="flag" style="background-color: #3c3c3c;"> <div> <span class="text">Solution</span> </div> <div class="triangle" style="background: linear-gradient(to right bottom, #3c3c3c 50%, transparent 50%);"></div> </div> <div class="image-wrapper "> <div class="card-img svg-bg"> <div class="component-image"> <div data-asset-id="e3089fdd-6fe2-43e9-9fe5-3393ca77f740" id="assetCard-44298ad4fc" class="cmp-image" itemscope itemtype="http://schema.org/ImageObject"> <img src="/content/experience-fragments/black-duck/en-us/pages/products/software-integrity/Solutions/manage-risk/threat-risk/_jcr_content/root/cardcontainer/colMiddle/cardb_1012960710.coreimg.svg/1726504942265/icon-sig-maturity-action-plan-map.svg" loading="lazy" class="img-responsive _none_ svg" itemprop="contentUrl" alt/> </div> </div> </div> </div> <div class="component-text card-text"> <h4 class="heading"> <span class="text-size-smaller"> Maturity Action Plan (MAP) </span> </h4> <p> Chart a systematic path to your security goals </p> <a href="/services/security-program/maturity-action-plan.html" target="_blank" rel="noreferer noopener"> Get an actionable roadmap for your security and development teams </a> </div> </section> </div> <div class="text aem-GridColumn aem-GridColumn--default--12"> <div class="container "> <section class="component-textcomp "> <div class="component-text"> <h2 class="title "> <span style="color: ;"> </span> </h2> </div> <div class="component-text"> </div> </section> </div> </div> <div class="assetCard image aem-GridColumn aem-GridColumn--default--12"> <section class="component-card-b no-link" data-card-type="asset-card" data-link="/content/black-duck/en-us/resources/ebooks/six-steps-to-effective-threat-modeling.html"> <div class="flag" style="background-color: #fcaf1a;"> <div> <span class="text">eBook</span> </div> <div class="triangle" style="background: linear-gradient(to right bottom, #fcaf1a 50%, transparent 50%);"></div> </div> <div class="image-wrapper "> <div class="card-img "> <div class="component-image"> <div data-asset-id="dd293672-df98-4d37-8ec5-05a1e4eb1d33" id="assetCard-158812504a" class="cmp-image" itemscope itemtype="http://schema.org/ImageObject"> <img srcset="/content/experience-fragments/black-duck/en-us/pages/products/software-integrity/Solutions/manage-risk/threat-risk/_jcr_content/root/cardcontainer/colMiddle/cardb_copy.coreimg.82.375.png/1725906325593/eb-six-steps-cover.png 375w,/content/experience-fragments/black-duck/en-us/pages/products/software-integrity/Solutions/manage-risk/threat-risk/_jcr_content/root/cardcontainer/colMiddle/cardb_copy.coreimg.82.480.png/1725906325593/eb-six-steps-cover.png 480w,/content/experience-fragments/black-duck/en-us/pages/products/software-integrity/Solutions/manage-risk/threat-risk/_jcr_content/root/cardcontainer/colMiddle/cardb_copy.coreimg.82.730.png/1725906325593/eb-six-steps-cover.png 730w,/content/experience-fragments/black-duck/en-us/pages/products/software-integrity/Solutions/manage-risk/threat-risk/_jcr_content/root/cardcontainer/colMiddle/cardb_copy.coreimg.82.992.png/1725906325593/eb-six-steps-cover.png 992w,/content/experience-fragments/black-duck/en-us/pages/products/software-integrity/Solutions/manage-risk/threat-risk/_jcr_content/root/cardcontainer/colMiddle/cardb_copy.coreimg.82.1200.png/1725906325593/eb-six-steps-cover.png 1200w" src="/content/experience-fragments/black-duck/en-us/pages/products/software-integrity/Solutions/manage-risk/threat-risk/_jcr_content/root/cardcontainer/colMiddle/cardb_copy.coreimg.png/1725906325593/eb-six-steps-cover.png" loading="lazy" class="img-responsive _none_ " itemprop="contentUrl" width="1600" height="960" alt="Six steps to effective threat modeling" title="Effective Threat Modeling eBook"/> <meta itemprop="caption" content="Effective Threat Modeling eBook"/> </div> </div> </div> </div> <div class="component-text card-text"> <h4 class="heading"> <span class="text-size-smaller"> Six Steps to Effective Threat Modeling </span> </h4> <p> </p> <a href="/resources/ebooks/six-steps-to-effective-threat-modeling.html"> Get the eBook </a> </div> </section> </div> </div> </div> </div> <div class="card-col col-xs-12 col-sm-4"> <div> <div class="aem-Grid aem-Grid--12 aem-Grid--default--12 "> <div class="assetCard image aem-GridColumn aem-GridColumn--default--12"> <section class="component-card-b no-link" data-card-type="asset-card" data-link="/content/black-duck/en-us/blog/creating-a-system-model-in-threat-modeling.html" data-new-tab="true"> <div class="flag" style="background-color: #12788a;"> <div> <span class="text">Blog</span> </div> <div class="triangle" style="background: linear-gradient(to right bottom, #12788a 50%, transparent 50%);"></div> </div> <div class="image-wrapper "> <div class="card-img svg-bg"> <div class="component-image"> <div data-asset-id="22025098-a7f9-42df-9f97-b23d64888aed" id="assetCard-8e46c8acac" class="cmp-image" itemscope itemtype="http://schema.org/ImageObject"> <img src="/content/experience-fragments/black-duck/en-us/pages/products/software-integrity/Solutions/manage-risk/threat-risk/_jcr_content/root/cardcontainer/colRight/cardb_13059433_copy.coreimg.svg/1722023214433/icon-content-article.svg" loading="lazy" class="img-responsive _none_ svg" itemprop="contentUrl" alt/> </div> </div> </div> </div> <div class="component-text card-text"> <h4 class="heading"> <span class="text-size-smaller"> Creating a system model in threat modeling </span> </h4> <p> </p> <a href="/blog/creating-a-system-model-in-threat-modeling.html" target="_blank" rel="noreferer noopener"> Read the blog post </a> </div> </section> </div> <div class="text aem-GridColumn aem-GridColumn--default--12"> <div class="container "> <section class="component-textcomp "> <div class="component-text"> <h2 class="title "> <span style="color: ;"> </span> </h2> </div> <div class="component-text"> </div> </section> </div> </div> <div class="assetCard image aem-GridColumn aem-GridColumn--default--12"> <section class="component-card-b no-link" data-card-type="asset-card" data-link="/content/black-duck/en-us/blog/security-flaws-vs-bugs.html" data-new-tab="true"> <div class="flag" style="background-color: #12788a;"> <div> <span class="text">Blog</span> </div> <div class="triangle" style="background: linear-gradient(to right bottom, #12788a 50%, transparent 50%);"></div> </div> <div class="image-wrapper "> <div class="card-img svg-bg"> <div class="component-image"> <div data-asset-id="22025098-a7f9-42df-9f97-b23d64888aed" id="assetCard-3e9c42f5e7" class="cmp-image" itemscope itemtype="http://schema.org/ImageObject"> <img src="/content/experience-fragments/black-duck/en-us/pages/products/software-integrity/Solutions/manage-risk/threat-risk/_jcr_content/root/cardcontainer/colRight/cardb_13059433.coreimg.svg/1722023249496/icon-content-article.svg" loading="lazy" class="img-responsive _none_ svg" itemprop="contentUrl" alt/> </div> </div> </div> </div> <div class="component-text card-text"> <h4 class="heading"> <span class="text-size-smaller"> Security bugs and flaws: Both bad, but in different ways </span> </h4> <p> </p> <a href="/blog/security-flaws-vs-bugs.html" target="_blank" rel="noreferer noopener"> Read the blog post </a> </div> </section> </div> </div> </div> </div> </div> </section> </div> </div> </div> </div> </div> </div> </div> </div> </section> </div> </div> </div> <div class="banner image aem-GridColumn aem-GridColumn--default--12"> <style scoped> .c316a20ea-b80b-4869-a8e9-987df3355bfa.component-banner .desktop-wrapper { background-image: url("/services/security-program/software-architecture-design/_jcr_content/root/synopsyscontainer/banner/image.coreimg.svg/1721847520069/footer-lime.svg"); } @media only screen and (min-width: 730px) { .desktop-svg{ opacity: 0; } } </style> <style scoped> @media only screen and (max-width: 729px) { .c316a20ea-b80b-4869-a8e9-987df3355bfa .dm-mobile{ display: none; } .c316a20ea-b80b-4869-a8e9-987df3355bfa .dm-desktop{ display: block; } } </style> <section id="banner-e9438a7a2f" class="component-banner c316a20ea-b80b-4869-a8e9-987df3355bfa transparent " data-card-type="banner" data-link="/content/black-duck/en-us/contact-sales.html"> <div class="desktop-wrapper "> <div class="text-overlay flex-container content-align-center text-align-center cropped-img"> <div class="content-wrapper text-width-60 paddingSmall "> <div class="text-wrapper contentValignCenter"> <div class="component-text"> <h4 class="title"><span class="text-size-smaller" style="color: #fff;"><p>Want to know more? </p></span></h4> <div class="component-text"> <div class="component-button padding-10" style="background-color: #fcaf1a"> <a href="/contact-sales.html">Let's talk</a> </div> </div> </div> </div> <div class="shapeTbg slash transparent" style="background-color: #5A2A82"></div> </div> </div> <div class="shapeTbg slash transparent text-width-60" style="background-color: #5A2A82"></div> </div> </section> </div> </div> </div> <div class="experiencefragment aem-GridColumn aem-GridColumn--default--12"> <div id="footerSIG" class="cmp-experiencefragment cmp-experiencefragment--sig-footer-js"> <div class="xf-content-height"> <div class="aem-Grid aem-Grid--12 aem-Grid--default--12 "> <div class="footer aem-GridColumn aem-GridColumn--default--12"> <link rel="stylesheet" href="/etc.clientlibs/synopsys/clientlibs/navigation/footer.lc-a1d1a7b1374f3bc3ce1ce3ecaebb0152-lc.min.css" type="text/css"> <section id="ad7390dbc-3430-409e-b408-dcf9ee581dce" class="navigation-footer-component"> <footer id="footerBD"> <div class="footerBD-bg-component"> <div class="footerBD-container"> <div class="footerBD-social-icons-wrapper"> <figure class="BD-logo-figure"> <a href="/"> <img class="blackDuck-footer-logo" src="/content/dam/black-duck/en-us/images/BlackDuckLogo-OnDark.svg" alt="Black Duck Home Page"> </a> </figure> <h3>Follow</h3> <ul class="BD-social-icons"> <li> <a href="https://x.com/blackduck_sw" title="Twitter"> <svg class="svg-inline--fa fa-x-twitter" aria-hidden="true" focusable="false" data-prefix="fab" data-icon="x-twitter" role="img" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 512 512" data-fa-i2svg=""> <path fill="currentColor" d="M389.2 48h70.6L305.6 224.2 487 464H345L233.7 318.6 106.5 464H35.8L200.7 275.5 26.8 48H172.4L272.9 180.9 389.2 48zM364.4 421.8h39.1L151.1 88h-42L364.4 421.8z"></path> </svg> </a> </li> <li> <a href="https://www.linkedin.com/company/black-duck-software" title="Linkedin"> <svg class="svg-inline--fa fa-linkedin-in" aria-hidden="true" focusable="false" data-prefix="fab" data-icon="linkedin-in" role="img" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 448 512" data-fa-i2svg=""> <path fill="currentColor" d="M100.28 448H7.4V148.9h92.88zM53.79 108.1C24.09 108.1 0 83.5 0 53.8a53.79 53.79 0 0 1 107.58 0c0 29.7-24.1 54.3-53.79 54.3zM447.9 448h-92.68V302.4c0-34.7-.7-79.2-48.29-79.2-48.29 0-55.69 37.7-55.69 76.7V448h-92.78V148.9h89.08v40.8h1.3c12.4-23.5 42.69-48.3 87.88-48.3 94 0 111.28 61.9 111.28 142.3V448z"></path> </svg>  </a> </li> <li> <a href="https://www.facebook.com/BlackDuckSoftware" title="Facebook"> <svg class="svg-inline--fa fa-facebook" aria-hidden="true" focusable="false" data-prefix="fab" data-icon="facebook" role="img" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 512 512" data-fa-i2svg=""> <path fill="currentColor" d="M512 256C512 114.6 397.4 0 256 0S0 114.6 0 256C0 376 82.7 476.8 194.2 504.5V334.2H141.4V256h52.8V222.3c0-87.1 39.4-127.5 125-127.5c16.2 0 44.2 3.2 55.7 6.4V172c-6-.6-16.5-1-29.6-1c-42 0-58.2 15.9-58.2 57.2V256h83.6l-14.4 78.2H287V510.1C413.8 494.8 512 386.9 512 256h0z"></path> </svg>  </a> </li> <li> <a href="https://www.youtube.com/@BlackDuckSoftware" title="Youtube"> <svg class="svg-inline--fa fa-youtube" aria-hidden="true" focusable="false" data-prefix="fab" data-icon="youtube" role="img" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 576 512" data-fa-i2svg=""> <path fill="currentColor" d="M549.655 124.083c-6.281-23.65-24.787-42.276-48.284-48.597C458.781 64 288 64 288 64S117.22 64 74.629 75.486c-23.497 6.322-42.003 24.947-48.284 48.597-11.412 42.867-11.412 132.305-11.412 132.305s0 89.438 11.412 132.305c6.281 23.65 24.787 41.5 48.284 47.821C117.22 448 288 448 288 448s170.78 0 213.371-11.486c23.497-6.321 42.003-24.171 48.284-47.821 11.412-42.867 11.412-132.305 11.412-132.305s0-89.438-11.412-132.305zm-317.51 213.508V175.185l142.739 81.205-142.739 81.201z"></path> </svg> </a> </li>  </ul> </div> <p class="footer-contactUs"> <span class="footer-contactUs-manage footer-contactUs-manage2"> <a href="https://go.blackduck.com/email-subscription-center.html" target="_blank">Manage Email Preferences</a> </span> <span class="footer-contactUs-manage"> <a href="javascript:void(0)" class="ot-sdk-show-settings">Manage Cookie Settings</a> </span>  <a href="https://www.google.com/maps/place/800+District+Ave+%23101,+Burlington,+MA+01803/@42.4824129,-71.28993,12z/data=!4m5!3m4!1s0x89e39e3082ec0bb9:0x4f2eda58614dd0d9!8m2!3d42.482409!4d-71.2075325?entry=ttu" class="footer-contactUs-a" target="_blank"><i class="fa-thin fa-location-crosshairs"></i> 800 District Ave. Ste 201 <br>Burlington, MA 01803</a> </p> <a href="/contact-sales.html" class="footer-contactUs-button"> Contact Us </a> </div> <div class="BD-5ths"> <h3>Solutions</h3> <ul> <li><a href="/solutions/artificial-intelligence-software-development.html">AI-generated Code</a></li> <li><a href="/solutions/api-security-testing.html">API Security Testing</a></li> <li><a href="/solutions/appsec-consolidation.html">AppSec Consolidation</a></li> <li><a href="/solutions/application-security-testing.html">Application Security Testing</a></li> <li><a href="/solutions/devsecops.html">DevSecOps</a></li> <li><a href="/solutions/software-supply-chain-security.html">Software Supply Chain Security</a></li> <li><a href="/solutions/enterprise-application-security-risk-management.html">Manage AppSec Risk</a></li> <li><a href="/solutions/cloud-security.html">Cloud & Container Security</a></li> <li><a href="/solutions/open-source-security.html">Open Source License Compliance</a></li> <li><a href="/solutions/mergers-and-acquisitions.html">M&A Due Diligence</a></li> <li><a href="/solutions/compliance.html">Quality & Security Standards Compliance</a></li> </ul> </div> <div class="BD-5ths"> <h3>Products & Services</h3> <ul> <li><a href="/platform.html">AppSec SaaS Platform</a></li> <li><a href="/static-analysis-tools-sast.html">Static Analysis (SAST)</a></li> <li><a href="/software-composition-analysis-tools.html">Software Composition Analysis (SCA)</a></li> <li><a href="/interactive-application-security-testing.html">Interactive Analysis (IAST)</a></li> <li><a href="/dast.html">Dynamic Analysis (DAST)</a></li> <li><a href="/services/penetration-testing.html">Penetration Testing</a></li> <li><a href="/fuzz-testing.html">Protocol Fuzzing</a></li> <li><a href="/services/security-program.html">AppSec Program Services</a></li> <li><a href="/services/security-program/software-architecture-design.html">Threat & Risk Assessments</a></li> </ul> </div> <div class="BD-5ths"> <h3>Support</h3> <ul> <li><a href="https://community.blackduck.com/">Community</a></li> <li><a href="https://documentation.blackduck.com">Documentation</a></li> <li><a href="https://blackduck.skilljar.com/">Product Education</a></li> <li><a href="/training.html">AppSec Training</a></li> <li><a href="/customer-success.html">Add-On Services</a></li> </ul> <h3>Resources</h3> <ul> <li><a href="/resources.html">Resources Center</a></li> <li><a href="/resources/webinars.html">Webinars</a></li> <li><a href="/contact-sales.html">Demos</a></li> <li><a href="/resources/analyst-reports.html">Research & Reports</a></li> <li><a href="/resources/ebooks.html">eBooks</a></li> <li><a href="/resources/white-papers.html">White Papers</a></li> <li><a href="/blog.html">Blog</a></li> </ul> </div> <div class="BD-5ths"> <h3>Explore more</h3> <ul class="list-4"> <li><a href="/company.html">About us</a></li> <li><a href="/contact-sales.html">Contact sales</a></li> <li><a href="/resources/case-studies.html">Customer stories</a></li> <li><a href="/partners.html">Partners</a></li>  <li><a href="https://news.blackduck.com">Newsroom</a></li> <li><a href="/company/careers.html">Careers</a></li> <li><a href="/glossary.html">Glossary</a></li> </ul> <h3>Legal</h3> <ul class="list-4"> <li><a href="/company/legal.html">Agreements</a></li> <li><a href="/company/legal/privacy-policy.html">Privacy</a></li> <li><a href="/company/legal/vulnerability-disclosure-policy.html">Security</a></li> </ul> </div> </div> </div> <div class="bdcopyright"> ©2024 Black Duck Software, Inc. All Rights Reserved </div> </footer> </section></div> <div class="htmlTextOnly aem-GridColumn aem-GridColumn--default--12"> <div class="container "> <section id="a28cf0f77-695c-40f4-a093-c47d7c3855f1" class="html-text-only-component" data-enable-page-css="true"> <style> #footerSIG .navigation-footer-component { background: #211e1e; } #footerBD { max-width:1600px; } </style> </section> </div> </div> </div> </div> </div> </div> </div> </div> </div>  <script src="https://kit.fontawesome.com/5126b7755f.js" crossorigin="anonymous" defer></script>  <script src="/etc.clientlibs/synopsys-clientlibs/synopsys-pagelibs.lc-5263c0ae7e459c024cc4bfff1a48ee3a-lc.min.js"></script> <script src="/etc.clientlibs/synopsys/clientlibs/dataLayer.lc-76e8a51ebc9605249c0760b7e01b1124-lc.min.js"></script> </body> </html>

CINXE.COM

Application & Architectural Risk Assessments | Black Duck