Static Analysis in Automotive SPICE

The Automotive SPICE (software process improvement and capability determination) is a software development process standard...

Introducing MISRA C Coding Standard to an Existing Code Base

The intent of the Motor Industry Software Reliability Association (MISRA) C coding standard was to define a subset of the C...

The Role of Static Analysis in Assessing Trustworthiness of IIoT Software

In a previous post I introduced the Industrial Internet Consortium (IIC), the reference architecture and the concepts of...

How Sound Static Analysis Complements Heuristic Analysis

Not all static analysis tools work the same, there are in fact a spectrum of tools that use a variety of techniques ranging...

Tainted Data and Format String Attack Strike Again

A recent code execution vulnerability (we also call this a code injection vulnerably) was discovered in Palo Alto Networks’...