AdriaScan develops software for the hospitality industry for more than 2,500 customers in 110 countries, ranging from corporate hotels in large resorts to small motels and camping sites. Software security assurance is a top priority for the company and its customers, because AdriaScan’s solutions speed up check-in processes, eliminating manual data entry, typing mistakes, paper-based photocopying, and storing of digital documents.
Spectra Assure™ allows AdriaScan to assess every release build in its entirety in minutes, providing a comprehensive analysis of risks and threats before software is shipped to customers.
Spectra Assure deconstructs proprietary, commercial, and open-source components, plus any artifacts added during compilation to identify malware, tampering, suspicious behaviors, secrets leakage, and more. It also provides remediation prioritization, enabling AdriaScan’s small development team to efficiently address risk.
“My team and I found using Spectra Assure is very easy, providing us with information in a matter of minutes,” said Boris Antonić, CEO of AdriaScan. “It offered everything we are looking for, a detailed analysis of each file explanation, whether the components are vulnerable or outdated, simple and straightforward UI, shareable reports, version history, and much more.”
The analysis generates the Spectra Assure SAFE Report, which provides a comprehensive software bill of materials (SBOM) and risk assessment. “We started to think about security a long time ago,” said Antonić. “A great experience is important, and I want our customers to feel the same when using our products. That is why we use Spectra Assure — to ensure the customer's safety.”
Like many software companies, AdriaScan uses various open-source components and third-party software development kits (SDKs) to speed up development of new solutions and capabilities. The Spectra Assure SAFE Report delivers a comprehensive SBOM and risk assessment, making it easy to understand the issues embedded in each component.
“In a few instances, we have found issues in the SDKs we use,” said Antonić. “Now we can share the reports with those vendors, so they can address the issue we’ve found.”
Our IT department uses Spectra Assure to evaluate any new software before it is installed on our network. Also, the ability to share reports with vendors has been very helpful.
Boris Antonić, CEO, AdriaScan
After the initial use of Spectra Assure in the software development lifecycle, AdriaScan’s IT department recognized it would help identify any risk with any third-party commercial software they were using without requiring source code would deliver insight into third-party commercial software risks. IT began requesting assessments of commercial software packages before deployment on their corporate systems.
“After the initial use of Spectra Assure in the development department, our own IT department requested a test on software,” continued Antonić. “Now, they use Spectra Assure to evaluate any new software before it is installed on our network.”