Welcome!

Open Source Cloud Authors: Pat Romanski, Elizabeth White, Liz McMillan, Rostyslav Demush, Charles Araujo

News Feed Item

nVisium Announces Swift.nV

New Security Training Tool for Apple's Swift Programming Language

HERNDON, Va., Aug. 20, 2014 /PRNewswire/ -- nVisium, the leading provider of application security tools, services and research for software development, released Swift.nV, a new training tool for identifying and testing vulnerabilities in the Swift programming language today.

www.nvisium.com.

Earlier this summer, Apple released its latest programming language, Swift, for iOS and OS X apps. The language was created to be both simpler and faster for developers to use.

Seth Law, Director of Research and Development at nVisium, decided to create the intentionally vulnerable Swift.nV iOS application. "Initially, we wanted to know how developers were using the language and what vulnerabilities existed, while exploring existing vulnerabilities and what they look like in Swift," explained Law.

Swift.nV is an open source project available to all using Apple's developer tools. Based off common application security flaws, such as the OWASP Top 10 and OWASP Mobile Top 10 vulnerabilities, this training mechanism was built to teach developers how to prevent and fix security flaws in the Swift programming language. This past June, nVisium released a similar intentionally vulnerable application for Grails called Grails.nV. "Just like Grails.nV, Swift.nV is part of our plan to expand the availability of security training tools for the developer community," said Jack Mannino, CEO of nVisium.

According to Law, "It is easier to find vulnerabilities in Swift than in other languages, such as Objective-C, since Swift is easier to learn and develop programs in." In his opinion, "Swift will probably overtake Objective-C rapidly due to its ease of use."

Currently Swift.nV and a list of over a dozen vulnerabilities common in mobile applications are offered on Github, an open-source development community. Seth expects to release tutorial videos and articles in the future on how to find and fix security issues within the Swift programming language. Requests on specific features will be accepted, which are expected to drive future research and development.

About nVisium

nVisium was founded in 2009 to build a better way forward for securing software throughout the development life cycle. Headquartered within the Washington DC area, nVisium has proven experience securing what matters most for Fortune 500 clients, innovative software startups, and government organizations. The nVisium team founded and created the OWASP Mobile Security Project, which is a global initiative to improve the state of mobile application security through next-generation secure development techniques. The team has presented research at major industry conferences and continues to develop open source tools for developers and penetration testers. Follow @nVisium.

Contact
Seth Law
[email protected]
801-783-0322

Logo - http://photos.prnewswire.com/prnh/20140819/137591

SOURCE nVisium

More Stories By PR Newswire

Copyright © 2007 PR Newswire. All rights reserved. Republication or redistribution of PRNewswire content is expressly prohibited without the prior written consent of PRNewswire. PRNewswire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

IoT & Smart Cities Stories
As IoT continues to increase momentum, so does the associated risk. Secure Device Lifecycle Management (DLM) is ranked as one of the most important technology areas of IoT. Driving this trend is the realization that secure support for IoT devices provides companies the ability to deliver high-quality, reliable, secure offerings faster, create new revenue streams, and reduce support costs, all while building a competitive advantage in their markets. In this session, we will use customer use cases...
Bill Schmarzo, author of "Big Data: Understanding How Data Powers Big Business" and "Big Data MBA: Driving Business Strategies with Data Science," is responsible for setting the strategy and defining the Big Data service offerings and capabilities for EMC Global Services Big Data Practice. As the CTO for the Big Data Practice, he is responsible for working with organizations to help them identify where and how to start their big data journeys. He's written several white papers, is an avid blogge...
When talking IoT we often focus on the devices, the sensors, the hardware itself. The new smart appliances, the new smart or self-driving cars (which are amalgamations of many ‘things'). When we are looking at the world of IoT, we should take a step back, look at the big picture. What value are these devices providing. IoT is not about the devices, its about the data consumed and generated. The devices are tools, mechanisms, conduits. This paper discusses the considerations when dealing with the...
Business professionals no longer wonder if they'll migrate to the cloud; it's now a matter of when. The cloud environment has proved to be a major force in transitioning to an agile business model that enables quick decisions and fast implementation that solidify customer relationships. And when the cloud is combined with the power of cognitive computing, it drives innovation and transformation that achieves astounding competitive advantage.
With 10 simultaneous tracks, keynotes, general sessions and targeted breakout classes, @CloudEXPO and DXWorldEXPO are two of the most important technology events of the year. Since its launch over eight years ago, @CloudEXPO and DXWorldEXPO have presented a rock star faculty as well as showcased hundreds of sponsors and exhibitors! In this blog post, we provide 7 tips on how, as part of our world-class faculty, you can deliver one of the most popular sessions at our events. But before reading...
Poor data quality and analytics drive down business value. In fact, Gartner estimated that the average financial impact of poor data quality on organizations is $9.7 million per year. But bad data is much more than a cost center. By eroding trust in information, analytics and the business decisions based on these, it is a serious impediment to digital transformation.
Digital Transformation: Preparing Cloud & IoT Security for the Age of Artificial Intelligence. As automation and artificial intelligence (AI) power solution development and delivery, many businesses need to build backend cloud capabilities. Well-poised organizations, marketing smart devices with AI and BlockChain capabilities prepare to refine compliance and regulatory capabilities in 2018. Volumes of health, financial, technical and privacy data, along with tightening compliance requirements by...
DXWorldEXPO LLC, the producer of the world's most influential technology conferences and trade shows has announced the 22nd International CloudEXPO | DXWorldEXPO "Early Bird Registration" is now open. Register for Full Conference "Gold Pass" ▸ Here (Expo Hall ▸ Here)
@DevOpsSummit at Cloud Expo, taking place November 12-13 in New York City, NY, is co-located with 22nd international CloudEXPO | first international DXWorldEXPO and will feature technical sessions from a rock star conference faculty and the leading industry players in the world. The widespread success of cloud computing is driving the DevOps revolution in enterprise IT. Now as never before, development teams must communicate and collaborate in a dynamic, 24/7/365 environment. There is no time t...