Naumen uses Solar appScreener to check the security of its software

2023: Solar appScreener Rollout

Naumen has implemented a comprehensive security control solution POSolar appScreen of RTK-Solar, which announced this on May 2, 2023. A scanner that combines the capabilities of static and dynamic code analysis allows Naumen to increase the security of developed software solutions.

In May 2023, the vendor uses Solar appScreener to identify and fix vulnerabilities in the source code of third-party libraries used in the Naumen Service Management Platform, a platform designed to automate service and business processes. Developers are actively developing the solution by releasing releases every five to six months. Each includes about 300 changes and improvements to the platform. Therefore, special attention is paid to the reliability and security of the system, which requires the identification and elimination of vulnerabilities before the platform update is available to customers.

In the future, Naumen plans to automate secure development processes using Solar appScreener. The RTK-Solar solution integrates with repositories, allowing you to download code for analysis directly. In addition, integration with error tracking systems allows you to immediately start tasks to eliminate vulnerabilities found and track their progress.

We offer business solutions in the field of digital infrastructure, client communications and service management. Therefore, the security of data and infrastructure of our customers has always been our priority, - said Dmitry Rubin, director of the operating business of Naumen. - When the number of cyber threats is constantly growing, it was very important for us to find a reliable solution that provides high-quality code scanning using technologies in this area. At the same time, I would like to note the ease of installing and configuring Solar appScreener.

Back in 2022, the number of attacks implemented through vulnerabilities in applications increased many times over, and this trend is unlikely to decline in the near future. Attackers deliberately left vulnerabilities and backdoors and injected malicious code into open libraries and Open source components, "said Daniil Chernov, director of the Solar appScreener Center of RTK-Solar. - In these conditions, an integrated approach to checking applications for vulnerabilities and undeclared capabilities is very important. Therefore, we are developing Solar appScreener as a solution that combines various methods of code analysis within a single interface and correlates the results with each other. "