Software asset management tools vendor LogicLibrary on Wednesday plans to announce its acquisition of BugScan, which provides security analysis capabilities to identify code vulnerabilities before application deployment.
Terms of the transaction were not disclosed. LogicLibrary is acquiring the company, BugScan, and the technology of the same name.
BugScan’s technology lets developers conduct security scans on application binaries without requiring source code, LogicLibrary said. The technology will be integrated into LogicLibrary’s Logidex, which is a software development asset mapping and discovery engine for representing enterprise application environments in a graphical way, according to LogicLibrary. Software development assets can include executables and associated software development life cycle artifacts, such as requirements, documentation, and UML models.
The BugScan technology does not require that developers have security expertise. BugScan results are displayed in a comprehensive report, LogicLibrary said. An integrated Logidex-BugScan solution is planned for release later this year. LogicLibrary is positioning the technology for use in governance of SOAs (service-oriented architectures), enabling users to set compliance thresholds for security.
“It actually uses binaries to get information, and based upon signatures as well as behavior can identify security vulnerabilities in your application code,” said Greg Coticchia, CEO of LogicLibrary.