How does Kiuwan Code Security help me decide how to fix my application?
Kiuwan Code Security provides a module to create Action Plans, i.e. concrete and defined sets of goals and actions to be performed on your application to improve your code.
There are two options:
- Build an Action Plan based on the more important criteria to you (e.g., available manpower, high-security vulnerabilities).
- Ask Kiuwan Code Security to build an Action Plan for you based on your preferred strategy (e.g. I want to reach a 5-star rating)
How does Kiuwan Code Security perform in the OWASP Benchmark?
The OWASP Benchmark is a test suite designed to evaluate the coverage and accuracy of automated vulnerability detection tools.
For more details about the OWASP Benchmark and Kiuwan Code Security, see our recent results and run your test.
Is Kiuwan in the Gartner Magic Quadrant?
The Gartner Magic Quadrant selects companies based on various criteria, including "market share, number of clients, installed base, types of products/services, target market." This formula favors companies with very high revenue.
Kiuwan is currently a modest income company, and our revenue does not meet the target for inclusion in the current Gartner Magic Quadrant. However, we are growing rapidly and anticipate that this will change in the near future.
Kiuwan solutions are trusted by 500+ companies worldwide, including:
To learn more, read verified reviews from Kiuwan users at the following third-party sites:
What are the Kiuwan Solutions for?
Modern companies need software to support their business, whether they develop it themselves or use external providers.
In both cases, all companies have similar needs:
- To detect security vulnerabilities early and fix them before deploying;
- To reduce the number of bugs affecting the performance and efficiency of their software;
- To manage the costs associated with development and maintenance properly;
- To gain greater control of their application development.
The Kiuwan applications can address all the above needs, regardless of the size and level of complexity of the development process.
What is Kiuwan Code Security (SAST)?
Kiuwan Code Security is a SAST solution that scans your code to identify and remediate security vulnerabilities.
It complies with the most stringent security standards and covers all important programming languages. Although it is a cloud-based solution, you can analyze your source code locally.
Continuous subscriptions also include an IDE plugin to help developers work more efficiently. Learn more about it on our here.
What is Kiuwan Insights? (SCA)
Kiuwan Insights is an application that scans your code to identify vulnerabilities in third-party and open-source components.
It also helps you ensure compliance with open source and copyleft licenses.
Learn more about it here.
What other modules can complement the core functionalities of Kiuwan?
There are three optional modules:
- Kiuwan Code Analysis
The focus of this application is to reduce technical debt, making your code more maintainable, reliable, portable, and efficient. - Kiuwan Governance
This is a business-oriented dashboard to help managers make smart decisions over their application portfolio. - Kiuwan LifeCycle
This module is included with continuous licenses. It helps you create audits of your analysis results and how they change over time. This module is added to Kiuwan Code Security if you buy a continuous subscription.
Where can I find useful Kiuwan resources?
- Kiuwan Website
- Kiuwan Product Documentation
- Kiuwan Blog
- Troubleshooting Guide
- Kiuwan Technical Support
- Kiuwan Youtube Channel
- Sales Contact
Which security standards are supported by Kiuwan Code Security?
Kiuwan Code Security is an OWASP corporate member and is CWE certified.
It covers the following standards:
- SANS 25
- CERT-Java/C/C++
- WASC
- PCI-DSS
- NIST
- MISRA
- BIZEC.
...and the list is continuously growing!
Learn more about how Kiuwan Code Security performs on the OWASP Benchmark here.
Who are the Kiuwan Solutions designed for?
The Kiuwan applications are designed to meet the needs of all the roles involved in a company's software development process:
- CIOs (Chief Information Officers) who need to make strategic decisions to improve software development
- CSOs (Chief Security Officers) who need to tackle security from the application perspective
- QA Managers and Engineers who need to control and monitor the quality state of applications under development
- Project Managers who need to know the health of the projects they manage from a technical perspective
- Application Architects who can discover structural flaws early in the development process
- Operation Officers who need to know the level of quality and security of the application they have in production
- Integration and Deployment Managers who need to make sure the structural and technical health of the applications they are moving in their respective pipelines is what is expected in the next environment
- Developers who want to develop the best software possible and learn as much as possible in the process