Static Analysis and UL 2900 Standard for Software Cybersecurity

The UL 2900 is a software cybersecurity standard, specifically a Cybersecurity Assurance Program or CAP, released by...

FDA Updates Guidance for Managing Cybersecurity for Medical Devices

In a previous post, I discussed the role of static analysis in managing cybersecurity for medical devices. It was in...

Memory Safety Issues Are Still the Leading Source of Security Vulnerabilities

A recent headline was published in several technology news outlets, at ZDNet “Microsoft: 70 percent of all security bugs are...

The Industrial Internet Reference Architecture and Security Framework

The Industrial Internet Consortium (IIC) is a non-profit, industry group that is investigating and proposing the standards...