The Auto Channel
The Largest Independent Automotive Research Resource
The Largest Independent Automotive Research Resource
Official Website of the New Car Buyer

Application Risk Assessment Survey Underscores Vulnerability of Enterprises to Reverse Engineering

CLEVELAND--The findings of a recent Application Risk Assessment Survey that included the responses of over 600 corporations indicate that roughly two-thirds of organizations who are most at risk from reverse engineering do not have adequate controls in place to manage these risks.

The survey assessed four critical factors:

1) The likelihood that a companys applications would be reverse engineered

2) The materiality of the risks that stem from reverse engineering

3) The presence of tools to prevent reverse engineering and

4) The adoption of practices and policies to ensure that those tools were being applied consistently and effectively.

Of the top 15 industries most at risk, 27% had no controls in place, 35% relied upon developers to make their own decisions with no policy or corporate guidance to manage these risks consistently and only 36% had both tools to combat reverse engineering and some type of consistent guidance that reflected the companys policies and appetite for risk.

As .NET and Java applications become increasingly ubiquitous, the risks that stem from uncontrolled access to source code are also increasing proportionately, said Gabriel Torok, President at PreEmptive Solutions. Vulnerability exploitation, IP theft, privacy violations and piracy are among the many potentially material risks that must now be managed.

Security, compliance and risk management stakeholders need to reach a consensus on the controls that are appropriate to manage what may otherwise become material risks. The published survey results offer organizations an objective benchmark to begin the process of determining the appropriate response.

The top 15 industries at risk from high to low are; computer hardware, banking, electronics, diversified services, aerospace and defense, telecommunications, transportation, computer software, media, consulting, financial services, insurance, health services and government.

Technologists have always understood the exposure that comes with distributing managed code in the clear, said Sebastian Holst, Senior Vice President of Sales and Marketing for PreEmptive Solutions. Unfortunately, the professionals who are responsible for modeling and managing risk have been largely unaware of the risks that stem from that exposure.

To request your copy of the Application Risk Assessment Study, email solutions@preemptive.com.

About PreEmptive Solutions

PreEmptive Solutions are the providers of the Dotfuscator and DashO obfuscation families and the SO-Signal application monitoring and tamper notification service. With over 3,000 corporate clients, 30,000 registered installations in 100+ countries and inclusion with Microsofts 6,000,000+ Visual Studio seats, PreEmptive Solutions is the undisputed obfuscation market leader and the clear choice for every organization that is serious about source code protection, application security and IT governance. To learn more, email solutions@preemptive.com or call +1 216 732 5895.

Names of actual companies and products mentioned herein may be the trademarks of their respective owners.