[SC-L] Integrated Dynamic and Static Scanning
Brad Andrews
andrews at rbacomm.com
Tue Jul 28 17:03:06 EDT 2009
Partnering is not the same thing as having a single owner for both
tools. I also believe WhiteHat is "hire them and they do it" model,
though they do put hardware in your enterprise. IIRC, you could not
do all the work yourself if you had whatever components they provided.
I don't think AppScan and the Ounce programs will be integrated to
this extent soon, but it would be much easier, since they are both in
the same company. That level of integration is highly unlikely
without the "common owner" this deal provides.
The end result may or may not be better, especially if they take the
IBM trend of charging more rather that the simpler model Ounce was
taking recently. (Though was that sustainable?)
I would be interested in hearing how the Fortify/WhiteHat integration worked.
--
Brad Andrews
RBA Communications
CSSLP, SANS/GIAC GSEC, GCFW, GCIH, GPCI
> Fortify (www.fortify.com) has Partnered with WhiteHat Security
> (www.whitehatsec.com) too
More information about the SC-L
mailing list