question

Mihai Terente avatar image
Mihai Terente asked

What will be your security requirements before validating an application and commercializing it to the Finastra customers?

fusionfabric.cloud
10 |600 characters needed characters left characters exceeded

Up to 8 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.

1 Answer

Mihai Terente avatar image
Mihai Terente answered

The app can be published to FusionStore as a Coming Soon app, however a full security validation is required before your app is eligible to be sold.

All applications follow a rigorous security check performed by Finastra’s global security - Synopsys.

The standard security assessment includes ancillary documentation for evidences, such as:

  • Supporting documentation or code samples to prove keys are stored securely.
  • Evidence of explicit access control.
  • Explanation and evidence for how validity checking of all user inputs for syntactic and semantic correctness is handled.

The advanced validation includes Standard Validation, plus

  • Static Application Security Testing.
  • Software (SAST) Composition Analysis (SCA).

The premium validation includes:

  • API misusage manual code review.
  • Penetration Testing.
10 |600 characters needed characters left characters exceeded

Up to 8 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.