Security Scan Checks Binary Open Source

发布时间:2017-08-09 00:00
作者:Ameya360
来源:Rick Merritt
阅读量:945

  A Korean startup launched an online service that uses a novel approach to scan open source code for known security flaws. Insignary, Inc. let’s users scan files of up to 5 Mbytes for free on its Web site but charges for larger files and more detailed reports.

  The code looks for function and variable names and other constants that don’t vary among different compilations of a program. After identifying programs it checks open source repositories for known security flaws.

  The company maintains a database compiled from hundreds of thousands of open source repositories its searches. It uses a free U.S. Homeland Security database and a licensed repository to check for published security flaws.

  A variety of tools help OEMs manage open source licenses and check security, but only work on source code, not binary files. Others have tools that identify binary programs using checksums but they can fail to detect programs created using different compilers. Synopsys supplies a tool that uses hashing algorithms, supporting more accurate binary scans.

  “Our customers say we do better on the benchmarks,” said Taejin Kang, CEO of Insignary.

  The startup was founded in 2016 and released in April its software to its first two paying customers, large hardware OEMs in Korea and Japan. It has two dozen other OEMs in China, Korea and Japan evaluating the software.

  “We are trying to get people to know about this capability and how well it performs,” Kang said explaining the free online service.

  The company charges a base price of $100,000 per server per year for customers to run its Insignary Clarity program on their systems. Alternatively it lets users access a complete Web service the startup hosts for $3,000 per scan.

  The company is venture backed and seeking a Series A round to help fund operations in the U.S. including in Silicon Valley. Kang joined the company six months ago after a varied career leading startups in Korea and spending the last nine years working for Samsung and a Korean carrier.

(备注:文章来源于网络,信息仅供参考,不代表本网站观点,如有侵权请联系删除!)

在线留言询价

相关阅读
  • 一周热料
  • 紧缺物料秒杀
型号 品牌 询价
RB751G-40T2R ROHM Semiconductor
BD71847AMWV-E2 ROHM Semiconductor
MC33074DR2G onsemi
TL431ACLPR Texas Instruments
CDZVT2R20B ROHM Semiconductor
型号 品牌 抢购
STM32F429IGT6 STMicroelectronics
IPZ40N04S5L4R8ATMA1 Infineon Technologies
TPS63050YFFR Texas Instruments
BU33JA2MNVX-CTL ROHM Semiconductor
BP3621 ROHM Semiconductor
ESR03EZPJ151 ROHM Semiconductor
热门标签
ROHM
Aavid
Averlogic
开发板
SUSUMU
NXP
PCB
传感器
半导体
相关百科
关于我们
AMEYA360微信服务号 AMEYA360微信服务号
AMEYA360商城(www.ameya360.com)上线于2011年,现 有超过3500家优质供应商,收录600万种产品型号数据,100 多万种元器件库存可供选购,产品覆盖MCU+存储器+电源芯 片+IGBT+MOS管+运放+射频蓝牙+传感器+电阻电容电感+ 连接器等多个领域,平台主营业务涵盖电子元器件现货销售、 BOM配单及提供产品配套资料等,为广大客户提供一站式购 销服务。