GTONE succeeded in exporting the secure coding tool five years after it successfully localized it. The secure coding tool is a `source code security vulnerability analysis tool` which finds security weaknesses that can be abused by hackers by statically analyzing only the source codes without running the program.
GTONE (CEO Lee Soo-yong) announced on December 22 that it would supply the secure coding product it developed on its own, i.e. ‘Security Prism,’ to the Agricultural Bank of China. The Agricultural Bank of China with assets worth KRW65 trillion is the 15th largest bank in China. According to the People`s Bank of China`s reinforced guideline on the security of commercial banks, which went into effect last February, the decision was made to introduce the source code security weakness analysis tool.
Security Prism as well as 2 other foreign-made products and 1 Chinese product, went through the PoC (proof of concept), pilot operation and benchmark testing (BMT) in the past year or so before it was finally selected. GTONE said the analysis results showed that Security Prism was rated as excellent in reliability, operating efficiency and scalability.
Security Prism applied the latest static analysis technologies, such as flow, sensitivity and interprocedural analysis to correctly detect the security weaknesses of source codes. This product applied not only the international standard secure coding guide, but also domestic standards, such as the 47 essential security weaknesses of the Ministry of Government Administration and Home Affairs, with necessary modifications. Last June Security Prism acquired the Common Criteria (CC) certification in the source code security weakness analysis tool category.
“We became the first domestic secure coding tool maker to export its own-brand product directly to an overseas market,” said Lee Soo-yong, CEO of GTONE. “As it was selected after going through BMT in cooperation with a global secure coding company, its performance and technology are proven.”
Yu Chang-seon | yuda@etnews.com