HP Software & Solutions has put out three security software programs as part of its Application Security Center, which it hopes will address the growing risk of security breaches within web applications.
The first, the HP Assessment Management Platform 8.0, helps customers set up a Centre of Excellence (CoE) for application security. In a CoE model, a small team of security experts helps analyse the results of security tests that are implemented by people that may not have security expertise.
"Security experts from HP Software & Solutions will mentor and work with the customers to set up a Center of Excellence (CoE) for application security using the HP Assessment Management Platform 8.0 software," said Michael Sher, director, application quality sales, Asia Pacific and Japan, HP Software & Solutions.
The HP team then helps analyse the results of security tests that are implemented by people that may not have security expertise.
"By using this model to test applications for security vulnerabilities within existing development, quality assurance and operations processes, organisations can increase security coverage across the enterprise at minimal cost," added Sher. The model also promises to help organisations find and fix security vulnerabilities earlier in the application design process which helps lower costs.
The second release, HP WebInspect 8.0, promises accurate security testing and remediation capabilities for complex web applications, including those built on emerging Web 2.0 technologies.
The third offering, HP Software-as-a-Service (SaaS) Project Services for Application Security Center, provides full scanning and penetration testing services hosted by HP. The vendor looks to support customer security teams during critical projects or peak testing periods with its own experts, provide expertise around the scanning requirements of Web 2.0 technologies, and provide guidance on building an effective compliance-driven web application security scanning practice across the enterprise.
These new announcements are a follow-up to the vendor's fixing tool for Flash software. Earlier in March, HP Software & Solutions introduced SWFScan, a free tool to help Flash developers protect their websites against application security vulnerabilities and reduce the risk of hackers accessing sensitive data.