On August 11, Sparrow, a company specializing in application security, announced that its integrated application security testing solution, 'Sparrow Enterprise v1.0,' has obtained Common Criteria (CC) certification.


Following the CC certification of its source code security vulnerability analysis tools, Sparrow SAST/SAQT, Sparrow has now also received certification for Sparrow Enterprise, which integrates source code, open source, and web vulnerability analysis technologies. This further strengthens Sparrow's competitiveness in the public and defense sectors.


CC certification is an international standard evaluation for assessing product security. Sparrow Enterprise has achieved the EAL2 (Evaluation Assurance Levels) grade, demonstrating that it meets strict security requirements and is recognized for its product security and safety.


Sparrow Enterprise is a solution that enables the analysis and integrated management of source code, open source, and web vulnerabilities on a single platform, allowing users to easily assess their security status at a glance. By providing vulnerability analysis throughout the entire software development lifecycle, it enables proactive responses to supply chain security threats. Integration with configuration management systems and CI (Continuous Integration)/CD (Continuous Deployment) tools automates analysis and allows real-time monitoring of analysis status.


It offers a variety of features that allow development teams, security teams, and other organizations to collaborate based on consistent security policies and to establish customized vulnerability management systems. With features such as task assignment by person in charge, progress tracking, and history management, vulnerabilities can be managed efficiently. Users can also select vulnerability analysis criteria and specify customized approval processes, enabling flexible policy management.


Hot Picks Today


Jang Ilsu, CEO of Sparrow, stated, "With the acquisition of CC certification, the technological capabilities and safety of Sparrow Enterprise have been officially proven." He added, "Sparrow will support defense and public institutions in building secure software development environments so that they can proactively respond to the growing security threats in the software supply chain."

Sparrow Obtains CC Certification for Integrated Application Security Testing Solution View original image


한글 기사 보기
This content was produced with the assistance of AI translation services.

© The Asia Business Daily(www.asiae.co.kr). All rights reserved.

Today’s Briefing