Software Assurance            Software Hardening            Autonomic Computing
Using Benchmarks to Assess Static Analysis Tools

Researchers from Toyota recently published a paper entitled "Test Suites for Benchmarks of " at the 26th...

The Sony Hack and Securing the Software Supply Chain

The latest attack on Sony Pictures by malicious hackers continues to evolve as an international story line. What we know at...

Poodle, Static Analysis, and the Difference Between Design Defects and Code Defects 

Almost without exception, as soon as a new security vulnerability is reported, people ask us, "Could CodeSonar have found that...

Your Cyclomatic Complexity May Be Wrong  

The great physicist Lord Kelvin stated "To measure is to know" – a principle taken to heart by scientists across many...

Finding Heartbleed with CodeSonar

The minute I heard about Heartbleed — the bug in OpenSSL responsible for the worst security vulnerability in years — I...