About Fortify Audit Assistant
Fortify Audit Assistant is an optional tool to help determine whether or not the issues returned from a scan represent true vulnerabilities. Application Security can work with Fortify Audit Assistant to help determine whether the issues returned in OpenText SASTanalysis results represent true vulnerabilities.
To make its determinations, Fortify Audit Assistant needs data to establish a baseline for its predictions. This data is based on the decisions OpenText Core Application Security (Fortify on Demand) auditors made during scan audits about how to characterize various issues. The data, which is pooled and anonymized, can be used in conjunction with training data based on decisions your auditors have made. Fortify Audit Assistant assessments of the actual threats that issues represent become more accurate as it receives more training data.
See Also
Configuring Fortify Audit Assistant