GrammaTech Nominated to Compete in 2023 ‘ASTORS’ Awards Program

Tammy Waitt

August 9, 2023

CodeSentry is GrammaTech’s Binary Software Composition Analysis (SCA) solution for gaining component inventory and insights into vulnerabilities and software risk, generating SBOMs, supporting Vulnerability Disclosures, and responding to Software Supply Chain Security (SSCS) risks. (Courtesy of GrammaTech)

GrammaTech, a leading provider of application security testing (AST) products and software research services, is pleased to announce its CodeSentry binary Software Composition Analysis (SCA) platform will Compete in its Fourth Consecutive Year in American Security Today’s Annual Homeland Security Awards Program.

Most software developers add third-party and open-source components to their code to achieve desired capabilities without recreating the wheel. While this practice saves time and reduces development costs, at the end of the day, developers must assume responsibility for the security of the code they did not write.

The companies that then purchase the software, either to embed it into their products (e.g., government, defense, aerospace, transportation, medical, industrial, or business applications) or to use themselves as a business application, must be concerned with the security of the code.

Too many recent attacks have demonstrated the negative effects of vulnerabilities in the software supply chain, including Sunburst, Log4j, Codecov, Kaseya, and others.

According to B2B technology market intelligence and consulting firm VDC Research, nearly 60% of software products contain third-party code, most of which uses open-source components under the hood. Since this pre-built code is delivered in binary format, organizations could not detect its security risks.

CodeSentry was developed by GrammaTech to address software supply chain security, allowing organizations to detect security vulnerabilities “under the hood” in third-party code.

(To protect everyone… there’s a code for that. Code is everywhere in the products we count on and use every day. Making that code safe and secure to protect your business – is GrammaTech’s business. Courtesy of GrammaTech and YouTube.)

CodeSentry uses binary software composition analysis (BSCA) to identify known threats, also known as common vulnerabilities and exposures (CVEs) and/or common weakness enumeration (CWE) errors in externally developed software components without access to source code.

Unlike source-code SCA tools that only inspect components under development, CodeSentry analyzes the binary that executes to identify all components or vulnerabilities, including those in post-production applications.

CodeSentry identifies second, third, and fourth-party components regardless of where they enter the software supply chain by analyzing the final binary “as deployed.” This allows organizations to identify vulnerable, open source before it is incorporated into released products.

Finally, CodeSentry detects and tracks N-day and Zero-day vulnerabilities throughout the software lifecycle, supported by daily updates. This powerful product has been of special interest to various government organizations, including national security, military defense, and aerospace exploration agencies.

CodeSentry enables organizations to meet the new CISA guidance and executive order requirements through its unique, high-precision identification, tracking, and remediation for vulnerabilities in third-party code.

GrammaTech is a long-trusted homeland security partner founded by software analysis and binary transformation experts and has decades of expertise in high-tech research partnerships with the U.S. government and other organizations.

Some of those partnerships include the Defense Advanced Research Projects Agency (DARPA), the Department of Defense (DoD), the Department of Homeland Security (DHS), the U.S. Cyber Command, the Department of the Navy, the National Aeronautics and Space Administration (NASA), the National Institute of Standards and Technology (NIST), the National Science Foundation (NSF), the Air Force Research Laboratory (AFRL), and others.

GrammaTech has solved some of their most complex software challenges that impact safety, security, resilience, sustainment, automation, and developer productivity.

(GrammaTech’s latest version of CodeSentry 4.2 is now deployed to all SaaS instances and is available for on-premise installations as well. CodeSentry 4.2 makes it easy to search your software inventory for vulnerable open-source packages with the new ‘Component Search’ feature, and the new CodeSentry Dashboard provides a ‘single pane of glass’ overview of artifact scanning and results across the CodeSentry instance. Courtesy of GrammaTech and YouTube.)

The latest version of CodeSentry detects vulnerabilities in third-party or pre-built code during the development process, and provides comprehensive support for desktop and mobile applications, firmware, containers, and embedded operating systems. Using CodeSentry, developers can verify the contents, security, and safety of third-party software components used to build products.

Because source code is rarely available for third-party software, binary analysis is emerging as a leading method for extracting a software bill of materials (SBOM) to identify components, dependencies, and the security vulnerabilities they may contain.

CodeSentry automates this process to provide a foundation for strengthening software supply chain security, and far outpaces alternatives to provide the broadest possible coverage that includes:

Desktop, Server, and Mobile platforms: Windows, Linux, macOS, Android, and iOS
Language Support: Binaries originating from: C/C++, C#, Java and Go, as well as Python and JavaScript
CPU Architectures: Intel, PowerPC, Sparc, ARM32/64, MIPS and AVR32
Embedded OSes: VxWorks, QNX, Squashfs, Cramfs
File Systems and Containers: Embedded and Firmware Filesystem Image Formats, Mobile File Formats, Docker Containers, and Python and Javascript Packages
Supports multiple SBOM formats, including SPDX and CycloneDX

CodeSentry quickly analyzes purchased or commercial off-the-shelf (COTS) software to identify all software components, including custom code, vendor libraries, third-party code, OSS, and API dependencies for software mapping, and generates a software bill of materials (SBOM).

CodeSentry detects zero-day and N-day vulnerabilities, even when source code is unavailable, and provides all of the vulnerabilities in the components, links to CVE reports, and offers remediation suggestions.

CodeSentry features an easy-to-use upload interface and multiple output formats convenient for DevOps and accessible to IT professionals without programming experience.CodeSentry thoroughly catalogs all components from OSS, custom code, commercial off-the-shelf components, network and GUI components, and authentication layers.

Finally, CodeSentry enables applications to be audit-ready by embedding the SBOM into the application along with software licensing for third-party software.

GrammaTech has corporate headquarters in Bethesda, Maryland, a Research and Development Center in Ithaca, New York, and a global network of distributors and partners.

To learn more, please visit www.grammatech.com.

GrammaTech to Compete in Fourth Consecutive ‘ASTORS’ Awards Program

2021 ‘ASTORS’ Awards Luncheon (starting front row, left to right) SIMS Software President & CEO Michael Struttmann; TENEO Risk Advisory Executive Chairman Commissioner Bill Bratton; NEC National Security Systems President Dr. Kathleen Kiernan; TSA Administrator David Pekoske; Fortior Solutions General Counsel Katherine Cowan; NEC Corporation of America Senior Vice President & Chief Experience Officer Raffie Beroukhim; TENEO Risk Advisory Chief of Staff David Cagno; Infragard National Board Member Doug Farber, Lumina Analytics Co-Founder & Chairman Allan Martin, and AMAROK Senior Vice President Sales & Marketing Mike Dorrington.

American Security Today’s Annual ‘ASTORS’ Awards is the preeminent U.S. Homeland Security Awards Program, and now entering it’s Eighth Year, continues to recognize industry leaders of Physical and Border Security, Cybersecurity, Emergency Preparedness – Management and Response, Law Enforcement, First Responders, as well as federal, state and municipal government agencies in the acknowledgment of their outstanding efforts to Keep our Nation Secure.

The 45th NYPD Police Commissioner Keechant L. Sewell was the lead Chief Negotiator and Commanding Officer for the Nassau County Police Department’s prestigious negotiation team.

AST is pleased to announce that the 45th Police Commissioner for the City of New York, Keechant L. Sewell has agreed to participate in the 2023 ‘ASTORS’ Homeland Security Awards Ceremony and Banquet Luncheon as a guest speaker.

Please join AST in Welcoming Former Commissioner Sewell to the 2023 ‘ASTORS’ Homeland Security Awards Ceremony Luncheon on Thursday, November 16, 2023 in New York City.

Go to https://americansecuritytoday.com/product/awards-luncheon/ to secure your Seat or reserve a Table and Receive a Special Early Bird Discount.

***Limited space available. There will be No On-Site registrations.

The continually evolving ‘ASTORS’ Awards Program will highlight the trail of Accomplished Women in Leadership in 2023 and the Significance and Positive Impact of Advancing Diversity and Inclusion in our Next Generation of Government and Industry Leaders. Because #MentorshipMatters.

So be on the lookout for exciting upcoming announcements of Speakers, Presenters, Book Signing Opportunities, and Attendees at the 2023 ‘ASTORS’ Awards Presentation Luncheon on Thursday, November 16, 2023 in New York City at ISC East!

(See some highlights of the 2022 ‘ASTORS’ Homeland Security Awards Ceremony and Banquet Luncheon in New York City during ISC East at the Javits Center. Courtesy of AST and YouTube.)

Nominations are currently being accepted for the 2023 ‘ASTORS’ Homeland Security Awards at https://americansecuritytoday.com/ast-awards/.

Comprehensive List of Categories Include:

Access Control/ Identification	Personal/Protective Equipment	Law Enforcement Counter Terrorism
Perimeter Barrier/ Deterrent System	Interagency Interdiction Operation	Cloud Computing/Storage Solution
Facial/IRIS Recognition	Body Worn Video Product	Cyber Security
Video Surveillance/VMS	Mobile Technology	Anti-Malware
Audio Analytics	Disaster Preparedness	ID Management
Thermal/Infrared Camera	Mass Notification System	Fire & Safety
Metal/Weapon Detection	Rescue Operations	Critical Infrastructure
License Plate Recognition	Detection Products	COVID Innovations
Workforce Management	Government Security Programs	And Many Others to Choose From!

Don’t see a Direct Hit for your Product, Agency or Organization?

Submit your category recommendation for consideration to Michael Madsen, AST Publisher, at: mmadsen@americansecuritytoday.com.

Homeland Security remains at the forefront of our national conversation as we experience an immigration crisis along our southern border and crime rates that are dramatically higher than before the Pandemic across the United States.

CBP K9 Team Zaskya Steros and TYKE, with Commissioner Bill Bratton at the 2022 'ASTORS' Awards Luncheon. — CBP K9 Team Zaskya Steros and TYKE, with Police Commissioner Bill Bratton at the 2022 ‘ASTORS’ Awards Luncheon.

These challenges have become a national priority with an influx of investments in innovative new technologies and systems.

Enter American Security Today, the #1 publication and media platform in the Government Security and Homeland Security fields, with a circulation of over 75,000 readers and many tens of thousands more who visit our AST website at www.americansecuritytoday.com each month.

The pinnacle of the Annual ‘ASTORS’ Awards Program is the Annual ‘ASTORS’ Awards Ceremony Luncheon Banquet, an exclusive, full-course plated meal event in the heart of New York City.

The 2022 exclusive sold-out ‘ASTORS’ luncheon featured representatives of law enforcement, public safety, and industry leaders who came together to honor the selfless service of those who stand on the front lines and those who stand beside them – providing the capabilities and technologies to create a safer world for generations to come.

Last year marked the 20th anniversary of the Department of Homeland Security (DHS), which came out in force to discuss comprehensive collaborations between private and public sectors that have led to the development of intelligence and technologies which serve to protect our nation.

Deputy Executive Assistant Commissioner (DEAC) Diane Sabatino, expresses her pride in the women and men of the CBP, and their families who support them.

The keynote address was provided by U.S. Customs and Border Protection (CBP) Office of Field Operations (OFO) Deputy Executive Assistant Commissioner (DEAC) Diane Sabatino, who described the changes to CBP through the tragedy of 9/11 and the relentless commitment to its mission and ongoing investment in the latest technologies and innovations to protect our borders and Homeland.

The resounding theme of the DEAC’s remarks was her pride in the women and men of the CBP and their families who support them.

Deputy Inspector Lashonda Dyce accepts a 2022 'ASTORS' Award on behalf of the NYPD TARU Unit for Excellence in Public Safety. — Deputy Inspector Lashonda Dyce accepts a 2022 ‘ASTORS’ Award on behalf of the NYPD TARU Unit for Excellence in Public Safety, joined at left by Commissioner Bill Bratton, and at right Chief of Department Kenneth Corey.

AST was also joined by Legendary Police Commissioner William Bratton, who spoke about his love for the City of New York, the Profession of law enforcement to which he has dedicated his life, and for which he continues to drive thought leadership and innovation.

New York City Police Department (NYPD) Chief of Department Kenneth Corey, came out to address Luncheon attendees and shared some of his experiences and the changes in policing he’s witnessed over his more than three decades of service.

Katherine Schweit, an attorney, security consultant, and retired FBI special agent, and former head of the FBI’s active shooter program. — Katherine Schweit, attorney, security consultant, retired FBI special agent, and former head of the FBI’s active shooter program.

FDNY Chief Joseph Jardin honored the men and women of the FDNY, not only those who currently serve but all of those who have selflessly served, with special recognition of those lost on 9/11.

Chief Jardin spoke about the continuing health battle of many following 9/11 with cancer and respiratory disease, yet now knowing the full consequences, would not have made a different decision to respond.

As Chief Jardin noted, mission-driven service is the lifeblood of every firefighter, volunteer, and sworn member, and has been so throughout the history of the Fire Service.

Former head of the FBI’s active shooter program, Katherine Schweit joined AST to sign complimentary copies of her book, ‘STOP THE KILLING: How to End the Mass Shooting Crisis,’thanks to the generosity of our 2022 ‘ASTORS’ Awards Sponsors.

The 2023 ‘ASTORS’ Awards Program is Proudly Sponsored by Platinum Event Sponsor: NEC National Security Systems (NSS)

And Our RETURNING Premier Sponsors:

ATI Systems, Automatic Systems of America,

IPVideo Corporation, Rajant Corporation, RX Global, SIMS Software, and American Security Today!

In 2022, AST was pleased to welcome the esteemed New York City Fire Department(FDNY); the New York City Police Department(NYPD); and the NYC Hospital Police, as well as Executive Management from the U.S. Cybersecurity and Infrastructure Security Agency(CISA), and many other DHS agencies, Federal law enforcement agencies, and private/public partnerships such as the National Association of Women Law Enforcement Executives (NAWLEE), the 30×30 Initiative, a coalition of professionals advancing the representation of women in policing; and Operation Lifesaver, Inc. (OLI) (rail safety advocates).

The FDNY was honored in the 2022 'ASTORS' Awards Program for Excellence in Public Safety and Critical Incident Response. — The FDNY was honored in the 2022 ‘ASTORS’ Awards Program for Excellence in Public Safety and Critical Incident Response, accepted by FDNY Chief Joseph Jardin and Deputy Assistant Chief Frank Leeb.

The prestigious Annual ‘ASTORS’ Homeland Security Awards Program highlights the most cutting-edge and forward-thinking security solutions coming onto the market today, to ensure our readers have the information they need to stay ahead of the competition and keep our Nation safe – one facility, street, and city at a time.

Katherine Schweit, former head of the FBI’s active shooter program speaks with 'ASTORS' Attendees and autographs copies of 'STOP THE KILLING: How to End the Mass Shooting Crisis.' — Katherine Schweit, former head of the FBI’s active shooter program speaks with ‘ASTORS’ Attendees and autographs copies of ‘STOP THE KILLING: How to End the Mass Shooting Crisis.’

In 2022 over 240 distinguished guests representing Federal, State, and Local Governments and Industry Leading Corporate Firms gathered from across North America, Europe, and the Middle East to be honored among their peers in their respective fields.

Each year, to keep our communities safe and secure, security dealers, installers, integrators, and consultants, along with corporate, government, and law enforcement/first responder practitioners, convene in New York City to network, learn and evaluate the latest technologies and solutions from premier exhibiting brands at ISC East, the Natural Disaster & Emergency Management Expo (NDEM EXPO), and the ASIS NYC Expo.

ISC East is the Northeast’s leading security & public safety event, hosted in collaboration with sponsor Security Industry Association (SIA) and in partnership with ASIS NYC.

U.S. Customs and Border Protection (CBP) was Honored at the 2022 ‘ASTORS’ Homeland Security Awards Ceremony and Banquet Luncheon in New York City, featuring OFO DEAC Diane Sabatino and Director of Field Operations NY Area Frank Russo (at center).

Corporate firms, the majority of which return year to year to build upon their Legacy of Wins, include:

Advanced Detection Technologies, AMAROK, ATI Systems, Axis Communications, Automatic Systems, BriefCam, Canon U.S.A., Cellbusters, CornellCookson, CyberArk, Fortior Solutions, guardDog.ai, Hanwha Techwin of America, High Rise Escape Systems, IPVideo Corporation, Konica Minolta Business Solutions, NEC National Security Systems, NICE Public Safety, OnSolve, PureTech Systems, Quantum Corporation, Rave Mobile Safety, Regroup Mass Notification, Robotic Assistance Devices, Rajant Corporation, SafeLogic, Select Engineering Services LLC, Singlewire Software, SolarWinds Worldwide, Teledyne FLIR, Valor Systems, and West Virginia American Access Control Systems, *just to name a few!***

Why American Security Today?

The traditional security marketplace has long been covered by a host of publications putting forward the old-school basics to what is Today – a fast-changing security landscape.

American Security Today is uniquely focused on the broader Homeland Security & Public Safety marketplace with over 75,000 readers at the Federal, State, and local levels of government and firms allied to the government.

American Security Today brings forward a fresh, compelling look and read with our customized digital publications that hold readers’ eyes throughout the story with cutting-edge editorial that provides solutions to their challenges.

Harness the Power of the Web – with our 100% Mobile Friendly Publications

AST puts forward the Largest and Most Qualified Circulation in Government with Over 75,000 readers on the Federal, State and Local levels.

AST Digital Publications are distributed to over 75,000 qualified government and homeland security professionals in federal, state, local, and private security sectors.

‘PROTECTING OUR NATION, ONE CITY AT A TIME’

AST Reaches both Private & Public Experts, which is essential to meeting these new challenges.

Today’s new generation of public safety and security experts need real-time knowledge to deal with domestic and international terrorism, lone wolf attacks, unprecedented urban violence, shifts in society, culture, and media bias – making it increasingly difficult for Homeland Security, Law Enforcement, First Responders, Military and Private Security Professionals to implement coordinated security measures to ensure national security and improve public safety.

These experts are from Government at the federal, state, and local levels as well as from private firms allied to the government.

AST provides a full plate of topics in our AST Monthly Magazine Editions, AST Website, and AST Daily News Alerts, covering 23 Vital Sectors such as Access Control, Perimeter Protection, Video Surveillance/Analytics, Airport Security, Border Security, CBRNE Detection, Border Security, Ports, Cybersecurity, Networking Security, Encryption, Law Enforcement, First Responders, Campus Security, Security Services, Corporate Facilities, and Emergency Response among others.

AST has Expanded readership into integral Critical Infrastructure audiences such as Protection of Nuclear Facilities, Water Plants & Dams, Bridges & Tunnels, and other potential targets of terrorism.

Other areas of concern include Transportation Hubs, Public Assemblies, Government Facilities, Sporting & Concert Stadiums, our Nation’s Schools & Universities, and Commercial Business Destinations – all enticing targets due to the large number of persons and resources clustered together.

To learn more, please see the 2022 ‘ASTORS’ CHAMPIONS Edition Fully Interactive Magazine – the Best Products of 2022 ‘A Year in Review.’

The Annual CHAMPIONS edition reviews ‘ASTORS’ Award Winning products and programs, highlighting key details on many of the winning firm’s products and services, including video interviews and more.

The 2022 CHAMPIONS serves as your Go-To Source through the year for ‘The Best of 2022 Products and Services‘ endorsed by American Security Today – and can satisfy your agency’s and/or organization’s most pressing Homeland Security and Public Safety needs.

From Physical Security (Access Control, Critical Infrastructure, Perimeter Protection, and Video Surveillance Cameras and Video Management Systems), to IT Security (Cybersecurity, Encryption, Data Storage, Anti-Malware, and Networking Security – to name a few), the 2022 ‘ASTORS’ CHAMPIONS EDITION has what you need to Detect, Delay, Respond to, and Mitigate today’s real-time threats in our constantly evolving security landscape.

It also features guest editorial pieces from some of the security industry’s most respected leaders and recognized firms in the 2022 ‘ASTORS’ Awards Program.

For more information on All Things American Security Today, as well as the 2023 ‘ASTORS’ Awards Program, please contact Michael Madsen, AST Publisher at mmadsen@americansecuritytoday.com.

AST strives to meet a 3 STAR trustworthiness rating, based on the following criteria:

Provides named sources
Reported by more than one notable outlet
Includes supporting video, direct statements, or photos