IBM has announced the acquisition of Ounce Labs, a provider of enterprise source code security testing.
Ounce Labs will be integrated into IBM's Rational software business and its technology will be offered as part of the AppScan family of web application security and compliance testing solutions.
The Ounce Labs and Rational offerings allow IBM to provide application security analysis capabilities across the software development lifecycle from coding to production.
Ounce Labs solutions use advanced capabilities to scan software source code and identify potential security and compliance vulnerabilities during the earliest stages of software development, when they are less expensive to correct. Ounce Labs software can also help organisations to rapidly assess and remediate the level of risk posed to their businesses through their legacy applications.
IBM claimed that the acquisition further reinforces its overall security offering strategy. Financial terms of the deal were not disclosed.
Daniel Sabbah, general manager of IBM Rational software, said: “The acquisition of Ounce Labs allows IBM to provide customers an end-to-end application security testing solution for managing security and compliance across all stages of the software delivery process.”
Gary Jackson, CEO of Ounce Labs, said: “With security and compliance threats becoming so pervasive, companies must take proactive, more cost effective actions to reduce the opportunities for their applications to be exploited.
“By combining our leading source code analysis technology with IBM's web application security software, we are able to offer customers a whole new level of security analysis and support. We look forward to joining IBM in their continued development of security technology, which will no doubt become required infrastructure over the next few years.”