To learn more about our capabilities, check out our growing library of reference material, including documentation and whitepapers.

• The SWAMP’s FAQ
• December 2017 – The SWAMP’s Vision Document
• April 2017 – “From Continuous Integration to Continuous Assurance,” a whitepaper that describes how the SWAMP can be integrated into the continuous assurance workflow, including integrated development environments, source code management systems, and continuous integration systems.
  • Available through IEEE.
• May 2016 – “Bad and Good News About Using Software Assurance Tools,” an academic paper that steps through how to use a software assurance tool, including the challenges that can occur in the process, followed by a discussion of how the SWAMP simplifies the use of assurance tools, lowering barriers to their adoption.
• June 2014 – SWAMP Confidentiality and Privacy for User Data, a whitepaper discussing the SWAMP Privacy Policy
• April 2014 – Why Do Software Assurance Tools Have Problems Finding Bugs Like Heartbleed?, an analysis of the Heartbleed vulnerability and the challenge it presented to software assurance tools
• December 2013 – SWAMP Capabilities for IOC
• November 2013 – The Case for an Open and Evolving Software Assurance Framework