SmartNet_Logo Xanh 1
<linearGradient id="sl-pl-cycle-svg-grad01" linear-gradient(90deg, #ff8c59, #ffb37f 24%, #a3bf5f 49%, #7ca63a 75%, #527f32)
0%
Loading ...

Thông tin chi tiết


Detailed Information

FossID Solution

FossID is a specialized solution for managing licenses and detecting security vulnerabilities of open-source components throughout the software development process.

Core Features:

Ultra-Fast Scanning and Identification:
Integrates a dedicated scanning engine with extremely fast processing speed (more than 70 files/second).

Snippet Detection:
The ability to accurately detect not only large libraries but also small code snippets that have been copied and pasted or have undergone modifications.

AI Application:
Integrates artificial intelligence to automatically screen and minimize false positive alerts.

Massive Database:
Owns one of the world’s largest open-source code knowledge databases (scanning tens of millions of projects and billions of files) with a size of 2 Petabytes.

Blind Audit Service (“Blind” Source Code Audit):
An advanced analysis feature that enables organizations to audit and generate copyright and security vulnerability reports based on encrypted output files without exposing or providing the original source code externally.


Clarity Solution

Clarity (a solution from Insignary, distributed by OSBC) is a specialized tool for managing and auditing open-source software through the analysis of binary files (Binary Code).

Core Features:

Source Code-Free Analysis:
Directly scans binary files to identify embedded open-source components without requiring access to the original source code.

High Accuracy:
Uses fingerprint technology instead of reverse engineering techniques, enabling accurate identification of embedded open-source code with an extremely low false reporting rate.

Supply Chain Risk Management:
Supports companies in securely controlling the use of software, modules, or products provided by third parties (external partners) to proactively prevent copyright disputes and security vulnerabilities.

Multi-Platform Support:
Optimally supports different embedded environments (such as ARM chips, Intel, etc.).

Security Data Integration:
Directly synchronizes with a massive database containing more than 150,000 records of known security vulnerabilities.