Latest Content

The global increase in connectivity and reliance on software is opening doors to exploits daily. Software quality and security is more important now than ever before.

  • GrammaTech Joins the MISRA Committee

    GrammaTech Joins the MISRA Committee

    ...

    Read Article
  • Shift Left Quality and Security with Automated Unit Testing, Dynamic and Static Analysis

    Shift Left Quality and Security with Automated Unit Testing, Dynamic and Static Analysis

    Our partner, Vector Software, recently announced the official release of the VectorCAST and GrammaTech CodeSonar integration. This prompted this post to discuss the role of static and...

    Read Article
  • What is Static Application Security Testing (SAST)?

    What is Static Application Security Testing (SAST)?

    We often get the question from developers and engineering managers: “What is SAST?” often followed by “Ok, what do SAST tools do exactly for security?” Many people know the acronym as...

    Read Article
  • Merging of the MISRA C++ and AUTOSAR C++ Guidelines is Good News for Safety Critical Software Development

    Merging of the MISRA C++ and AUTOSAR C++ Guidelines is Good News for Safety Critical Software Development

    The MISRA Consortium recently announced the merger of MISRA C++ 2008 and AUTOSAR C++14 into a common guideline. This is positive news since it combines two key standards for coding in...

    Read Article
  • Linux Foundation’s ELISA Project to Bring Linux to Safety Critical Systems

    Linux Foundation’s ELISA Project to Bring Linux to Safety Critical Systems

    The Linux Foundation’s announcement of the ELISA (Enabling Linux in Safety Applications) project was of interest to us because it requires a significant effort in evaluating open source...

    Read Article
  • Webinar Recording - What's New in CodeSonar 5.1?

    Webinar Recording - What's New in CodeSonar 5.1?

        Interested in upgrading to CodeSonar 5.1? In this webinar, Mark Hermeling, Senior Director of Product Marketing, will walk through all of the new features...

    Read Article
  • Easing the Adoption of Static Analysis into Existing Projects

    Easing the Adoption of Static Analysis into Existing Projects

    Read the document
  • DevSecOps - Integrating Static Application Security Tools (SAST) in DevSecOps

    DevSecOps - Integrating Static Application Security Tools (SAST) in DevSecOps

    Read the document
  • Static Analysis and UL 2900 Standard for Software Cybersecurity

    Static Analysis and UL 2900 Standard for Software Cybersecurity

    The UL 2900 is a software cybersecurity standard, specifically a Cybersecurity Assurance Program or CAP, released by Underwriter’s Laboratory (UL). Yes, this is the same company whose...

    Read Article
  • Using Static Analysis with Legacy Code

    Using Static Analysis with Legacy Code

    The adoption of any new tool into an existing software development process and established code base is always a challenge. Static analysis tools are no different but there are steps to...

    Read Article
  • FDA Updates Guidance for Managing Cybersecurity for Medical Devices

    FDA Updates Guidance for Managing Cybersecurity for Medical Devices

    In a previous post, I discussed the role of static analysis in managing cybersecurity for medical devices. It was in reaction to initial guidance published by the FDA in the document...

    Read Article
  • GrammaTech Releasing Binary Analysis and Rewriting Interface into Open Source

    GrammaTech Releasing Binary Analysis and Rewriting Interface into Open Source

    ...

    Read Article
  • Open-source Tools for Binary Analysis and Rewriting

    Open-source Tools for Binary Analysis and Rewriting

    Unfortunately binary-only software is unavoidable; dependencies of active software projects, firmware and applications distributed without source access, or simply old software whose...

    Read Article
  • Automotive Safety from the Ground Up Hardware, OS and Static Analysis56:28

    Automotive Safety from the Ground Up Hardware, OS and Static Analysis

    You need all the help you can get if you are the one responsible for building these complex safety-critical software systems on-time, on-budget, on-quality, on-security and with all of the required fe

    Watch Video
  • Static Analysis for Automotive Webinar | Looking Beyond MISRA28:56

    Static Analysis for Automotive Webinar | Looking Beyond MISRA

    Looking to learn more? Visit: https://www.grammatech.com/software-assurance/certifications-compliance/misra

    Watch Video
  • Safety, Security, and Agile Development - Pick Any Three Webinar58:20

    Safety, Security, and Agile Development - Pick Any Three Webinar

    People often connect safety and security with archaic development methodologies: strict processes, long development times, big budgets and waterfall development starting from requirements. However, th

    Watch Video
  • Integration Between GrammaTech CodeSonar and Wind River Workbench | GrammaTech11:16

    Integration Between GrammaTech CodeSonar and Wind River Workbench | GrammaTech

    With this integration, software developers can annotate and resolve the software vulnerabilities that CodeSonar highlights without leaving the Wind River Workbench development environment, thereby sig

    Watch Video
  • GrammaTech CodeSonar 90 Second Overview1:18

    GrammaTech CodeSonar 90 Second Overview

    Learn how you can utilize the deepest static analysis to ensure your code is resilient in today's connected world.

    Watch Video
  • Embedded World 2019 Presentation: Static Analysis for Safety and Security23:33

    Embedded World 2019 Presentation: Static Analysis for Safety and Security

    Mark Hermeling, Senior Director of Product Marketing at GrammaTech, discusses how CodeSonar can be used to amp up safety and security measures in your software development life cycle.

    Watch Video
  • Memory Safety Issues Are Still the Leading Source of Security Vulnerabilities

    Memory Safety Issues Are Still the Leading Source of Security Vulnerabilities

    A recent headline was published in several technology news outlets, at ZDNet “Microsoft: 70 percent of all security bugs are memory safety issues” and Fudzilla, “More than 70 percent of...

    Read Article
  • loading
    Loading More...