#United States #Burlington #Arm #Black Duck #Cyber Resilience Act

Black Duck's Role in Strengthening Software Security

In today's digital landscape, software security is more crucial than ever, especially with the emergence of new regulations like the European Cyber Resilience Act (CRA). This act mandates that organizations must maintain high security standards for their software, aiming to ensure safe and reliable technology as cyber threats continue to evolve. A key player in this initiative is Black Duck® Software, Inc., a leader in application security solutions.

A Celebrated Partnership: Black Duck and Arm

On June 24, 2025, Black Duck proudly celebrated two decades of collaboration with Arm, a British semiconductor and software design firm. This partnership has significantly contributed to securing applications that run on Arm64-based systems, aligning with the necessity to adapt to stringent cybersecurity regulations. Since 2005, Black Duck and Arm have worked together to combat the ever-changing security vulnerabilities in modern software.

The partnership aims to empower organizations to effectively manage open-source risks and detect vulnerabilities in their proprietary code, facilitating compliance with the CRA's demands. Black Duck’s innovative software composition analysis (SCA) capabilities have proven vital in helping businesses navigate these complexities—culminating in success stories where companies have remarkably reduced their costs by utilizing Black Duck's solutions on Arm-based CPUs.

Addressing the Need for Security in Modern Applications

As technology advances, so do the ways in which vulnerabilities can be exploited, making cybersecurity a top priority. With the enactment of the EU CRA, organizations are urged to create Software Bills of Materials (SBOM), which help keep track of software components and manage associated risks. Black Duck’s comprehensive portfolio meets these needs head-on, offering a detailed range of tools including Black Duck SCA for open source risk management and Coverity for identifying weaknesses in code.

“Robust product security remains a top priority as more AI-driven workloads grow in complexity and scale,” said Lyndon Fawcett, Director of Product Security at Arm. This emphasizes the necessity for security to be embedded deeply within the development lifecycle—a principle that has guided the partnership over these last 20 years.

Black Duck's Design for Compliance

Black Duck’s solutions are designed to transcend the usual trade-offs between speed, accuracy, and compliance without compromising security and regulatory standards. By facilitating continuous software security testing and offering natively supported tools aimed at the Arm architecture, businesses can secure their software more effectively.

As a recognized leader in application security testing, Black Duck has repeatedly been acknowledged in industry reports such as the Gartner® Magic Quadrant™ and the Forrester Wave™. This reinforces Black Duck's reputation as an essential partner for companies looking to secure mission-critical software in a world where code is omnipresent.

The Future of Application Security

Black Duck’s ongoing commitment to enhancing software security underscores its belief in true scale application security. With the rapid evolution of regulatory challenges, the importance of compliance, particularly in tandem with cutting-edge technology like AI, cannot be overstated. As organizations integrate these changes, the insights derived from Black Duck's partnership with Arm will play a pivotal role in not only meeting regulatory standards but also building a more secure digital ecosystem.

In conclusion, as more companies adopt AI and other emerging technologies, Black Duck’s collaboration with Arm highlights the importance of cybersecurity at every organizational level. This partnership exemplifies how continued dedication to software security can lead to innovations that not only meet today's demands but also anticipate the challenges of tomorrow.