Veracode Security Blog: Application security research, security trends and opinions » 2011 » November http://www.veracode.com/blog Application security testing, analysis, and metrics Fri, 18 May 2012 16:17:21 +0000 en hourly 1 http://wordpress.org/?v=3.3.1 Putting Trust in Software Code http://www.veracode.com/blog/2011/11/putting-trust-in-software-code/ http://www.veracode.com/blog/2011/11/putting-trust-in-software-code/#comments Tue, 15 Nov 2011 19:44:31 +0000 Chris Wysopal http://www.veracode.com/blog/?p=2196 Seven years ago when we were first embarking on the mission of making static analysis useable, scalable, and able to operate without access to source code, automated static binary analysis was a new concept. There were human operated disassemblers, but the ability to do large scale, highly repeatable static binary analysis was an unknown. At Veracode we have demonstrated that this is now possible. We have already analyzed billions of lines of code that makes up well over ten thousand applications.

So today I am going to crank up the wayback machine and look to some of the original concepts of the binary analysis vision which we are still working on today. I wrote the following for USENIX’s :login; Magazine in 2004.

Putting Trust in Software Code

]]> http://www.veracode.com/blog/2011/11/putting-trust-in-software-code/feed/ 1