SOURCE: Ounce Labs

August 24, 2005 09:05 ET

Unisys Chooses Ounce Labs to Strengthen Software Security Assurance Capabilities

Customers to Benefit From Extensive Security Expertise and Automated Software Audit Technology

FORT LAUDERDALE, FL -- (MARKET WIRE) -- August 24, 2005 -- Ounce Labs, the leader in software security assurance, today announced a partnership with Unisys Corporation (NYSE: UIS) to create a comprehensive software security assurance program within the Unisys U.S. Federal Government Group. The program will offer federal agencies a complete package by combining the broad security expertise of Unisys service teams with the automated software audit capabilities of Ounce Labs' technology.

"Assuring the security of software systems is not only crucial to the mission of federal agencies, but also is a direct requirement of several regulations and standards, including DITSCAP, DISA STIGs, and FISMA*," said Rick Rosenburg, managing partner, defense and intelligence, Unisys U.S. Federal Government Group.

"Ounce Labs' enterprise-scale technology allows our teams to perform rapid security interrogations of massive amounts of software. This approach to software assurance fits directly into our federal customers' 'report card' system, which looks at whether a security plan is in place and demonstrates long-term progress."

"Partnering with Unisys security experts adds tremendous value to customers not only by increasing the scope of applications they can test, but also by delivering the depth of risk analysis necessary to meet compliance and progress reporting requirements," said Jack Danahy, CEO of Ounce Labs. "We are especially pleased to announce Unisys as a partner because they are integrating our product into their security plan after first having been an Ounce Labs customer."

Ounce Labs' technology will be a key component of complete software assurance programs set up for customers by Unisys service teams. Based on the specific requirements for individual organizations, these programs will include services such as:

--  developing metrics-based software security standards,
--  setting acceptance criteria for new and legacy applications,
--  performing comprehensive software security assessments,
--  remediation of software vulnerabilities, and
--  reporting on progress and compliance.
The companies expect to expand this offering to other industries, such as financial services, which are often under as much security-related scrutiny as federal agencies.

*DoD Information Technology Security Certification and Accreditation Process (DITSCAP), Defense Information Systems Agency's Security Technical Implementation Guidelines DISA STIGs), and Federal Information Security Management Act (FISMA).

About Unisys

Unisys is a worldwide information technology services and solutions company. Our people combine expertise in consulting, systems integration, outsourcing, infrastructure and server technology with precision thinking and relentless execution to help clients, in more than 100 countries, quickly and efficiently achieve competitive advantage. For more information, visit

Ounce Labs, Inc.

Ounce Labs™, the leader in software security assurance, delivers products that allow customers to verify that software meets their defined security requirements. Ounce Labs' enterprise-level source code vulnerability analysis provides reliable metrics necessary to manage software risk, enforce security policies, enhance audit capabilities, and track compliance efforts. Based on patents-pending Contextual Analysis technology, Ounce Labs' products also pinpoint specific software design errors and coding flaws to simplify remediation during any phase of the development lifecycle. Founded in 2002, Ounce Labs is located in Waltham, Massachusetts. For more information, please visit

Contact Information

    Chris McClean
    Ounce Labs
    781.547.7031 (o)
    617.571.8945 (m)
    Email Contact