ABES joins HPE to improve the security of Brazilian software

Technical Cooperation Agreement will allow the issuance of an Audited Code Certificate, attesting that the source code of the applications has been evaluated by the HPE Fortify solution, being free from critical vulnerabilities
 

In order to support the development of national software, ABES (Brazilian Association of Software Companies) closed a technical cooperation agreement with HPE (Hewlett Packard Enterprise) to offer its members the ABES Certificate Audited Code. The certification will be issued from an audit of the source code of the applications, carried out by the security solution HPE Fortify on Demand.

According to Francisco Camargo, president of ABES, one of ABES 'permanent goals is to help its associates to improve the quality of their products and the safety of their customers. Currently, cyber attacks focus on the application layer and ensuring that it has no critical vulnerabilities has become essential to the security of users of these solutions.

“As a sectoral entity, one of our main efforts is to encourage national software production. In this market, the safety of users is one of the fundamental factors to improve the penetration and sale of programs developed in Brazil. This protection goes through several axes and the most critical is the introduction, unintentionally, of vulnerabilities in the code, which can be exploited negatively by hackers. The idea is to help our associates to develop, at a low cost, even safer products for their customers ”, explains Camargo.

The Safe Application Development Cycle requires time, training, certification and other important costs, and can delay the development of an application by months. The HPE Fortify solution intelligently analyzes the source code of applications to identify and classify the vulnerabilities found and suggest the necessary corrections.

“More than 80% of cyber attacks are targeted at applications and the incidence is higher in web applications”, says Paulo Macedo, Director of Security for Hewlett Packard Enterprise for Latin America. “When a company develops an application, either internally or through third parties, it is essential to ensure that at least the critical vulnerabilities have been eliminated, before the product is placed on the market or delivered to the customer.”

ABES associates interested in the solution will be able to obtain all the necessary information on the entity's portal. The user will receive the Vulnerability Report, classified by criticality and will have 30 days to correct them and resubmit the source code. With the latest report, ABES will issue the certificate, valid for one year, for the audited version.

With this cooperation agreement, the associated software companies will have technical support in Portuguese, differentiated values and will protect their intellectual property by not showing their source code to customers.

More information about the HPE Fortify solution and the ABES Certificate can be obtained by calling 0800 771 8638.

About HPE
Hewlett Packard Enterprise is a leader in the technology industry that allows customers to go further, faster. With the most comprehensive portfolio in the industry, with offerings ranging from cloud computing to data center solutions and applications, our technology and services help customers around the world to make their IT more efficient, more productive and more secure.