Menu

KAR Business Unit Recovery Database Network Achieves Veracode Verified Team Status

September 10, 2019

Certification Demonstrates Commitment to Data and Software Security

KAR Auction Services Inc. (NYSE: KAR), a global automotive remarketing and technology services provider, announces the Veracode Verified Team Status certification of Recovery Database Network (RDN). Veracode Verified is a program that validates a company’s secure software development processes by testing for potential vulnerabilities and evaluating its software security. This industry-leading verification helps assure RDN customers across the repossession and disposition value chain of its commitment to securing their data.

“RDN is continuously making enhancements through data science and building on its digital suite of solutions,” said Pradeep Mahdevu, vice president of RDN. “Undergoing rigorous security testing, implementing strict development practices, and earning Veracode Verified certification ensures that our digital solutions meet a high standard of application security, reducing risk for our customers.”

For more than 10 years, RDN’s software-as-a-service technology has enabled automotive lenders with improved recovery performance and increased operational efficiency while providing full security and transparency. Similarly, Clearplan’s digital platform provides recovery agents, drivers, forwarders and automotive lenders a centralized, mobile, cloud-based hub for repossession workflow and logistics management. Together, Clearplan and RDN connect thousands of recovery agents and automotive lenders to a streamlined vehicle recovery process — with reduced redundancies and increased actionable data.

Organizations like RDN that had their secure development practice validated, and their application accepted into the Team Tier, have demonstrated that the following security gates have been implemented into their software development practice:

  • Assesses first-party code with static analysis
  • Documents that the application does not allow Very High flaws in first-party code
  • Provides developers with remediation guidance when new flaws are introduced
  • Assesses open source components for security flaws
  • Identifies a Security Champion within the development team to ensure secure coding practices are used across the development lifecycle.
  • Provides training on secure coding best practices for the identified security champion.

“RDN is committed to delivering secure code to help organizations reduce the risk of a major security breach,” said Asha May, Veracode. “Companies that invest in secure coding processes and follow our protocol for a mature application security program are able to deliver more confidence to customers who deploy their software.”