Data Protection and the Role that Static Analysis Plays
31 Aug 2019 | Whitepaper
For any software application, how the data is organised, tested and stored must be carefully considered in order to guard against data breaches. In this paper we use reported data breaches to explain the specific vulnerabilities used in the exploitation. It is important to highlight that there are two categories of ‘issues’ in programming for a vulnerability to appear. The first is related to coding errors that are directly tied to a specific programming language specification and semantic requirement. The second is related to the business logic or rules of a specific application with no direct relationship to any language specification. The use of static code analysis in the software development life cycle is now critical as the first line of defense to prevent attackers from exploiting errors that can lead to data breaches and violations of data privacy regulations.