A lot of security issues are caused by insecure software. The result of these vulnerabilities might be failures, denial-of-services as well as a compromised networks. The basis of a secure application is a secure design and its implementation. Both steps can be audited and accompanied by us in order to identify security related issues.
The architecture is significant, if it comes to security of your application. Wrong decisions may result in an insecure software. A review helps you to identify issues by applying well known metrics and software patterns that match for your application and language. During a source code review we use static and dynamic analysis measures to identify issues. If desired, we provide you with exploits to illustrate the corresponding vulnerability. In the very end, you get an overview on the issues, a rating and the corresponding countermeasures.
An architecture and code review is a security audit where the following properties apply.
Results of the software development
White- or grey box
Static and dynamic examination
Full or focused (concentrate on specific aspects of security)