Application Risk Assessment Survey Underscores Vulnerability of Enterprises to Reverse Engineering.Organizations Most at Risk Lack Appropriate Controls to Manage Threat CLEVELAND -- The findings of a recent Application Risk Assessment Survey that included the responses of over 600 corporations indicate that roughly two-thirds of organizations who are most at risk from reverse engineering do not have adequate controls in place to manage these risks. The survey assessed four critical factors: 1) The likelihood that a company's applications would be reverse engineered 2) The materiality MATERIALITY. That which is important; that which is not merely of form but of substance. 2. When a bill for discovery has been filed, for example, the defendant must answer every material fact which is charged in the bill, and the test in these cases seems to of the risks that stem from reverse engineering 3) The presence of tools to prevent reverse engineering and 4) The adoption of practices and policies to ensure that those tools were being applied consistently and effectively. Of the top 15 industries most at risk, 27% had no controls in place, 35% relied upon developers to make their own decisions with no policy or corporate guidance to manage these risks consistently and only 36% had both tools to combat reverse engineering and some type of consistent guidance that reflected the company's policies and appetite for risk. "As .NET and Java applications A Java program that is run stand alone. The Java Virtual Machine in the client or server is interpreting the instructions. Contrast with Java applet. See servlet. become increasingly ubiquitous, the risks that stem from uncontrolled access to source code are also increasing proportionately," said Gabriel Torok, President at PreEmptive Solutions PreEmptive Solutions is a company that is focused on protecting and increasing the value of applications. It was founded in 1996 and today has over 3,000 corporate clients in over 100 countries. PreEmptive Solutions produces DashO, Dotfuscator and SO-signal. . "Vulnerability exploitation, IP theft, privacy violations and piracy are among the many potentially material risks that must now be managed." Security, compliance and risk management stakeholders Stakeholders All parties that have an interest, financial or otherwise, in a firm-stockholders, creditors, bondholders, employees, customers, management, the community, and the government. need to reach a consensus on the controls that are appropriate to manage what may otherwise become material risks. The published survey results offer organizations an objective benchmark to begin the process of determining the appropriate response. The top 15 industries at risk from high to low are; computer hardware, banking, electronics, diversified services, aerospace and defense, telecommunications, transportation, computer software, media, consulting, financial services The examples and perspective in this article or section may not represent a worldwide view of the subject. Please [ improve this article] or discuss the issue on the talk page. , insurance, health services health services Managed care The benefits covered under a health contract and government. "Technologists have always understood the exposure that comes with distributing managed code in the clear," said Sebastian Holst, Senior Vice President of Sales and Marketing for PreEmptive Solutions. "Unfortunately, the professionals who are responsible for modeling and managing risk have been largely unaware of the risks that stem from that exposure." To request your copy of the Application Risk Assessment Study, email solutions@preemptive pre·emp·tive or pre-emp·tive adj. 1. Of, relating to, or characteristic of preemption. 2. Having or granted by the right of preemption. 3. a. .com. About PreEmptive Solutions PreEmptive Solutions are the providers of the Dotfuscator and DashO obfuscation ob·fus·cate tr.v. ob·fus·cat·ed, ob·fus·cat·ing, ob·fus·cates 1. To make so confused or opaque as to be difficult to perceive or understand: "A great effort was made . . . families and the SO-Signal application monitoring and tamper To meddle, alter, or improperly interfere with something; to make changes or corrupt, as in tampering with the evidence. notification service. With over 3,000 corporate clients, 30,000 registered installations in 100+ countries and inclusion with Microsoft's 6,000,000+ Visual Studio seats, PreEmptive Solutions is the undisputed obfuscation market leader and the clear choice for every organization that is serious about source code protection, application security and IT governance. To learn more, email solutions@preemptive.com or call +1 216 732 5895. Names of actual companies and products mentioned herein may be the trademarks of their respective owners. |
|
||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion