Secured systems development lifecycle of software applications

Assignee

• Wiz, Inc. · US

Inventors

• Assaf RAPPAPORT · Tel Aviv-Yafo, IL
• Ami Luttwak · Binyamina - Givat Ada, IL
• Roy REZNIK · Tel Aviv-Yafo, IL
• Yinon COSTICA · Tel Aviv-Yafo, IL

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06F2221/033
• WIPO fieldComputer technology
• WIPO sectorElectrical engineering

Abstract

A system and method for securing the development of software applications are provided. The method includes receiving at least one trigger from a software development tool; determining an architecture score, wherein the architecture score measures the degree to which the architecture of the developed software application matches an approved architecture; determining a compliance score, wherein the compliance score measures the compliance of the developed security application to at least a set of one predefined security policy; determining a vulnerability score, wherein the vulnerability score measures the resiliency of the developed software application to at least reported security vulnerabilities; and determining a security score based on the architecture score, the compliance score, and the vulnerability score, wherein the security score is a measure indicating if the developed software application can be securely deployed without harming an environment of an organization executing the developed software application.