Hey, Project Manager, Time To Refactor!

If your software is becoming unwieldy, inflexible or inelegant, a good place to start exploring for improvements is in the level of refactoring that is being performed on the code on a day-to-day basis. As a project manager, I learned some key patterns of behavior that served as sure signs that not enough refactoring was […]

Read more
Introducing SecureCI

SecureCI is an open-source continuous integration solution. We’ve assembled a number of open-source tools that we use, installed them in a VMware image and configured them to work together. SecureCI is packaged as a virtual machine that can be run with the VMware Player that way you can be up and running in minutes without […]

Read more
Coveros Releases SecureCI Software Product

Open Source Continuous Integration Product Lowers the Cost of Delivering Secure Software Herndon, Va., September 3, 2009 — Coveros, Inc., a company that helps organizations accelerate the delivery of secure, reliable software, today announced the release of its first secure software development product, SecureCITM. SecureCI provides organizations with an integrated suite of open source tools […]

Read more
Three Preparations For A Software Security Assessment

If your development group or organization has an upcoming software security assessment scheduled here are three things to think about while making your preparations. Assets (Dependencies) – Be sure that you have all application assets together that are needed to build the application. If the assessment will be done in your test/development area then this will […]

Read more
Coveros and Fortify Software Partner on Application Security

Coveros selected by Fortify as Preferred Consulting Partner Herndon, Va., August 26, 2009 — Coveros, Inc., a company that helps organizations accelerate the delivery of secure, reliable software, today announced it has been selected by Fortify Software as a Preferred Consulting Partner. Under the terms of the partnership, Coveros will recommend Fortify’s Software Security Assurance […]

Read more
Sonar for code quality

Sonar is a tool to analyze and visualize code quality in Java projects. It isn’t a static code analysis tool itself, rather it uses a number of open source tools to analyze the code, then Sonar gathers the metrics. Its strength is in providing a dashboard, trend reports, and drill downs to help visualize the state […]

Read more
Three – A Very Special Number

I believe that three is a very special number. I can think of (at least) three things to support my belief: H2O Liquid, Solid, Gas It is what it is, although it exists in three different forms (water, ice, steam). Spacial Dimensions Height, Width, Depth These are used to describe the 3D world in which we […]

Read more
Three Common Coding Omissions

I have worked as part of a team going into client locations and performing software security assessments. While analyzing the findings of these assessments I have seen a common set of coding omissions that, if implemented, would eliminate the majority of the vulnerabilities that were identified. A brief description of each follows. Input Validation Data […]

Read more
Coveros Named a Finalist for Hottest Bootstrap Company by NVTC

Company Recognized as One of Northern Virginia’s Emerging Stars Herndon, Va., June 26, 2009 — Coveros, Inc., a company that helps organizations accelerate the delivery of secure and reliable software, today announced it has been selected as a finalist in the Hottest Bootstrap category of the Northern Virginia Technology Council (NVTC) Hot Ticket Awards. The […]

Read more
X