Together both firms can enable the most effective means of discovering open source licenses and address known open source security vulnerabilities in binaries.
November 16, 2017 – Insignary, the global leader in binary-level Free & Open Source Software (FOSS) security and compliance, and BearingPoint, a leading management and technology consultancy, are partnering to deliver the first managed binary code scanning service in Europe. BearingPoint will extend its FOSS security and compliance management capabilities by adding Insignary’s Clarity™ binary code scanning – enabling a very effective means of discovering open source licenses and addressing known open source security vulnerabilities in binaries.
By partnering with Insignary, BearingPoint is building on its heritage as one of the global leaders in FOSS management consulting and operations. As part of its FOSS managed services, BearingPoint provides clients with one of the most sophisticated analysis and remediation practices. By adding binary scanning services that leverage Insignary’s Clarity, BearingPoint will be able to provide unique capabilities to detect security vulnerability and compliance issues– with the ability to scan for hundreds of thousands of known vulnerabilities without the need to scan source code or reverse engineering of binary code.
“We are pleased to partner with a leading management and technology consultancy like BearingPoint. Their enviable track record of delivering innovative managed services to help clients in making their open source deployments secure and compliant make them a strategic partner for Insignary,” said Tae-Jin (TJ) Kang, CEO of Insignary, Inc. “We look forward to working together to ensure that BearingPoint and its clients benefit from the best binary security code and compliance scanning.”
“By adding Insignary’s binary scanning capabilities to our comprehensive FOSS security and compliance portfolio of services, BearingPoint will be able to offer the most comprehensive services for increasing FOSS security and compliance to our European clients who can enjoy the innovation, scalability, reliability, and other benefits of open source software without having to worry about the complex processes and tools for managing their software supply chain,” said Matthias Loebich, Global Leader Automotive at BearingPoint. “We will continue to add innovative technology and capabilities to provide our clients with optimal service levels.”
About Insignary Clarity™
Insignary Clarity enables proactive scanning of software binaries for known, preventable security vulnerabilities, while also identifying potential license compliance issues. It uses unique fingerprint-based technology, which works on the binary-level without the need for source code or reverse engineering. This makes it easy for software developers, value-added resellers (VAR), systems integrators and MSPs overseeing software deployments to take proper, preventive action before software usage.
Insignary’s Clarity is unique in that it scans for “fingerprints” from a binary to examine and then compare against the fingerprints collected from open source components hosted in numerous open source repositories. Unlike checksum or hash-based binary scanners, Clarity doesn’t need to keep separate databases of checksums or hash values for different CPU architectures. This significantly increases Clarity’s flexibility and accuracy in comparison to legacy binary code scanners.
Once a component and its version are identified through Clarity’s fingerprint-based matching, comparing them to more than 180,000 known security vulnerabilities catalogued in numerous databases, such as NVD and VulnDB, is straightforward. Clarity also adds enterprise support, “fuzzy matching” of binary code and support for automated build systems like Jenkins.
About BearingPoint
BearingPoint is an independent management and technology consultancy with European roots and a global reach. The company operates in three units: Consulting, Solutions and Ventures. Consulting covers the advisory business; Solutions provides the tools for successful digital transformation, regulatory technology and advanced analytics; Ventures drives the financing and development of start-ups. BearingPoint’s clients include many of the world’s leading companies and organizations. The firm has a global consulting network with more than 10,000 people and supports clients in over 75 countries, engaging with them to achieve measurable and sustainable success.
For more information, please visit:
Homepage: www.bearingpoint.com
Annual Report: www.bearingpoint.com/en/about-us/annual-report/facts-and-stories-from-strategy-to-results/
LinkedIn: www.linkedin.com/company/bearingpoint
Twitter: @BearingPoint