The scientific research institute of Precise instruments completed implementation of a code analyzer of the Solar appScreener applications

2020: Implementation of a code analyzer of the Solar appScreener applications

"Research Institute of Precise Instruments" joint-stock company completed implementation of a code analyzer of applications on existence of vulnerabilities and not declared Solar appScreener opportunities in development process. Rostelecom-Solar reported about it on September 30, 2020. Using examination of Supervisory center of security of software operating based on Rostelecom-Solar, the Institute could build complete lifecycle of safe software development, created for needs of the space industry.

Based on JSC Scientific Research Institute TP the laboratory for testing of the developed software for security is created. The implementation project of Solar appScreener implemented within 3 months allows to eliminate vulnerabilities in the code of applications on each of development stages.

For the purpose of the choice of an optimal solution the Institute analyzed the market of the systems of the automated scanning of software on vulnerability and held pilot testing of several solutions. According to the results of the customer made the decision on Solar appScreener implementation as a system has a suitable set of functionality. Separately in JSC Scientific Research Institute TP noted a big variety of supported languages of programming and low interest of false operations and also the first technical support ready to help with the solution of any questions.

Solar appScreener is the good example of a product combining simplicity of implementation, excellent functionality and convenience of using. All these qualities are very important for us, but time spent for software testing especially pleasantly surprised, it was considerably reduced. It allowed us to optimize and to automate verification process of the developed software products on existence of vulnerabilities in the code even more, – Ivan Dmitrievich Barsukov, the lead engineer on safe software development of JSC Scientific Research Institute TP noted.

Advantages of a product in comparison with the competing systems are capability automatically to detect the programming languages used in the application, to compare any scannings in time for tracking of dynamics of processing of vulnerabilities, existence of krossproyektny analytics and unloading of the reporting according to domestic classifications – such as OUD4 and BDU FSTEC of Russia.

For us this project is sign without exaggeration. Software development, the development of the country solving various problems in one of strategic directions, imposes high requirements to the tools ensuring safety of process.