Tuesday, February 09, 2010

Software Designed for Productivity


At HSD Software we design our products to help your employees be productive. How do we do this? By making our products plug and play compatible with industry standard tools; like SharePoint, IIS, Dot Net Framework, Microsoft SQL Server and more.


Does your business use multiple applications for any of the following?


     ServiceDesk software without change or problem management:

     Change management software that doesn't integrate with Active Directory:

     Time tracker programs that don't integrate into your SharePoint portal:

     Multiple time tracker programs for employees and contractors:


If you answered yes to any of these questions you’re looking for software that is easily managed, reliable and built on sold industry standard technology. Then we have your next solution.


Industry standard technology



At HSD Software we believe the best technology delivers the best results. That’s why we partner with industry leaders to provide the best solutions for our customers.


Customer question: Can we use your software if we don't have the latest cutting edge technology?


Answer: Yes you can. HSD Software always programs for the latest stable platform. We also try and make our solutions compatible with older technology. Older technology may make some features unavalible, however when this happens we try and make a plugin avalible.



Easy Code Management


Our programmers use HSD Software standards when writing code. This allows customers to easily modify and customize our applications to fit their business needs exactly.


HSD Software does not believe in over bloated code or applications. We follow in in-house K.I.S.S. (Keep it simple solutions) standard. This does not mean our products are featureless, it just means we don't add feature after feature to make our software look more valuable.


The list to the right shows the most dangerous programming errors compiled by the SANS Institute.

Our programmers are trained to avoid these and many other coding errors that can lead to security issues as we as program instability.


Our code comments tell you when we have coded for one of the conditions on the list.


Support is available for code management.


Time is money and we don't want our customers stuck on a coding issue. That’s our job!

Top 25 Dangerous Programming Errors


CWE-20: Improper Input Validation

CWE-116: Improper Encoding or Escaping of Output

CWE-89: Failure to Preserve SQL Query Structure

CWE-79: Failure to Preserve Web Page Structure

CWE-78: Failure to Preserve OS Command Structure

CWE-319: Cleartext Transmission of Sensitive Information

CWE-352: Cross-Site Request Forgery

CWE-362: Race Condition

CWE-209: Error Message Information Leak

CWE-119: Failure to Constrain Operations within the Bounds of a Memory Buffer

CWE-642: External Control of Critical State Data

CWE-73: External Control of File Name or Path

CWE-426: Untrusted Search Path

CWE-94: Failure to Control Generation of Code

CWE-494: Download of Code Without Integrity Check

CWE-404: Improper Resource Shutdown or Release

CWE-665: Improper Initialization

CWE-682: Incorrect Calculation

CWE-285: Improper Access Control

CWE-327: Use of a Broken or Risky Cryptographic Algorithm

CWE-259: Hard-Coded Password

CWE-732: Insecure Permission Assignment for Critical Resource

CWE-330: Use of Insufficiently Random Values

CWE-250: Execution with Unnecessary Privileges

CWE-602: Client-Side Enforcement of Server-Side Security


Source: SANS Institute



Time is Money!


We realize that software changes are painful for your employees. Most companies will fight upgrades or changes to their core business applications because they don't want to relearn the software.


HSD Software understands this. That’s why we do extensive testing with our key partners to provide the most productive flow through out our software solutions. The more time and energy we can save your employees the more productive they will be.