Software Assurance            Software Hardening            Autonomic Computing
Finding Bugs is Only the Beginning

I sometimes describe our main commercial product, CodeSonar, as a “defect detection tool.” While this is a convenient...

What is Taint Checking?
Taint checking? This isn't a trap, I promise. It sounds vulgar, but its etymology is perfectly reasonable, stemming from...
Reducing Risk and Costs of DO-178B and DO-178C Certification with Static Analysis

INTRODUCTION:

DO-178C – “Software Considerations in Airborne Systems and Equipment Certification” – provides production...

Accelerating Automotive Software Safety with MISRA and Static Analysis

INTRODUCTION:

The MISRA C/C++ coding guidelines were created based on concerns about the ability to safely use the C and C++...

The Minefields of MISRA Coverage

INTRODUCTION:

Modern static analysis tools are typically used for two main purposes: finding bugs, and finding violations...