Veracode to Sponsor and Deliver Software Vulnerabilities Presentation at OWASP & WASC AppSec Conference


BURLINGTON, MA--(Marketwire - November 12, 2007) -


WHO: Chris Wysopal, Founder and CTO, Veracode, Inc.

WHAT: OWASP & WASC AppSec 2007 Conference

WHEN:         Wednesday, November 14, 2007
              11:20 a.m. - 12:20 p.m. EST

WHERE:        eBay
              2211 North First Street
              San Jose, California 95131

              For more information, please visit:
              http://www.owasp.org/index.php/7th_OWASP_AppSec_Conference_-_San_Jose_2007/Agenda

DESCRIPTION:  Backdoors and Other Developer 'Introduced Features'

              Veracode Founder and CTO Chris Wysopal will discuss recently
              completed research on the subject of backdoors --
              vulnerabilities embedded within application code by
              developers that enable them to bypass authentication or
              other security controls. Chris will examine the
              classification of those backdoors that have been detected
              in applications and provide real world examples of
              application backdoors, a generalization of the mechanisms
              they use, and strategies for detecting these mechanisms
              (including static analysis of source and binary code).

ABOUT VERACODE

Veracode is the industry's first provider of automated, on-demand application security solutions. Created by a world-class team of application security experts, the company delivers services to identify software flaws introduced through coding errors or malicious intent. Veracode's core service, SecurityReview® uses patented binary code analysis and dynamic web testing that is uniquely able to inspect entire application inventories, including components, and does not require companies to expose their valuable source code. Enterprises can now protect their intellectual property while preventing attacks allowed by vulnerabilities in applications.

As the most accurate and comprehensive solution, Veracode makes it simple and cost-effective to implement application security best practices and reduce operational costs related to manual reviews. Whether a company is developing applications internally, purchasing software or integrating code from partners, Veracode's SecurityReview provides insight to the security level of your applications. Outsourcing code analysis to Veracode is the easiest way to secure your software. With a pragmatic approach to application security, Veracode helps you fix what matters most to your business.

Visit www.veracode.com for more information.

Contact Information: Media Contacts: Jim Crook Lois Paul & Partners 781-782-5734 jim_crook@lpp.com