Final Days to get an iPad Mini, ASUS Chromebook, or $250 Off Online Training


To attend this webcast, login to your SANS Account or create your Account.

The Intractable Problem of Software Security

  • Friday, May 24th, 2013 at 1:00 PM EDT (17:00:00 UTC)
  • Chris Wysopal
This webcast has been archived. You can view the webcast presentation and download the slides by logging into your SANS Portal Account or creating an Account. Click the Register Now button after you have logged in to view the Webcast.


  • Veracode

You can now attend the webcast using your mobile device!


We all know that applications are inherently insecure, yet some of the highest profile breaches in 2012 were the result of easily remediated coding flaws. These flaws persist in almost all the software that runs most websites and businesses; SQL injection alone affects 32% of web applications. If the current state of software security is any indication, we'll continue to hear about major data breaches in 2013 and beyond.

Join Chris Wysopal, Veracode's Co-Founder and CTO, as he discusses the current and future state of appsec. He will dive into the data that drive the predictions detailed in the Veracode's fifth annual State of Software Security Report. This report pulls data from tens of thousands of live application scans performed on the Veracode Platform.

On this webinar, you'll learn why Veracode believes we'll see the following dynamics in the near future:

  • Higher turn-over rates for CISOs and security professionals.
  • The rise of the everyday hacker.
  • Default data encryption for mobile communications.

But we'll also offer up ideas to change the future by providing guidance on building a meaningful application security program and ensuring developer buy-in. Don't miss your opportunity to change your company's future too!

Speaker Bio

Chris Wysopal

Chris Wysopal is Co-Founder, Chief Technology Officer at Veracode, which he co-founded in 2006. He oversees technology strategy and information security. Prior to Veracode, Chris was vice president of research and development at security consultancy @stake, which was acquired by Symantec.

In the 1990's, Chris was one of the original vulnerability researchers at The L0pht, a hacker think tank, where he was one of the first to publicize the risks of insecure software. He has testified to the US Congress on the subjects of government security and how vulnerabilities are discovered in software.

Chris received a BS in computer and systems engineering from Rensselaer Polytechnic Institute. He is the author of The Art of Software Security Testing.

Chris is often called upon to download the latest Minecraft mods for his 6-year-old son. An avid photographer and nature-lover, Chris spends his free time hiking the many conservation trails near his home outside Boston.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.