|Type||former Independent Software Vendor|
|Genre||Software Security Assurance|
|Founder(s)||Tedd Schlein of Kleiner, Perkins, Caufield & Byers, Mike Armistead, Brian Chess, Arthur Do, Roger Thornton|
|Headquarters||San Mateo, California, U.S.|
|Key people||John M. Jack (former CEO), Jacob West(head of Security Research Group), Brian Chess(former Chief Scientist), Arthur Do (former Chief Architect)|
|Owner(s)||Hewlett Packard Company|
|Website||fortify.com and |
Fortify Software or later Fortify was a California-based software security vendor, founded in 2003 and acquired by Hewlett-Packard in 2010. It now functions as a part of HP Enterprise Security Products, providing products and services to identify, fix and protect from security vulnerabilities in software applications. The group within HP now refers to itself as "HP Fortify".
Technical Advisory Board
The Fortify offerings included Static Application Security Testing and Dynamic Application Security Testing products, as well as products and services to support Software Security Assurance, or repeatable and auditable secure behaviors, over the course of a software application's life cycle.
In February 2011, Fortify also announced Fortify OnDemand, a static and dynamic application testing service.
- HP Press Release: "HP Completes Acquisition of Fortify Software, Accelerating Security Across the Application Life Cycle." September 22, 2010.
- Software Searches for Security Flaws (English), PCWorld.com, April 5, 2004
- A New Approach to Fortify Your Software (English), Internetnews.com, April 5, 2004
- HP Fortify
- "Quality and Solutions for Open source Community"
- "Software security errors"
- "Attacking the Build through Cross-Build Injection"
- "Watch What You Write: Preventing Cross-Site Scripting by Observing Program Output"
- "Dynamic taint propagation"
- Fortify SCA
- Fortify Runtime
- HP Fortify Governance
- SD Times, “HP builds up its Security-as-a-Service .” February 15, 2011.