BLOG

  • GrammaTech Named a SINET16 Cybersecurity Innovator

    GrammaTech Named a SINET16 Cybersecurity Innovator

    Each year, SINET evaluates the technologies and products from all over the world with hundreds of cybersecurity companies being considered. Of these, 16 are chosen for being the most...

    Read Article
  • On Demand Discussion with Osterman Research: Exposing Software Supply Chain Security Blind Spots

    On Demand Discussion with Osterman Research: Exposing Software Supply Chain Security Blind Spots

    Read Article
  • The Future of the SBOM

    The Future of the SBOM

    Although it might seem premature to discuss the future of the software bill of materials (SBOM) before they have even gained full use and acceptance in the industry. However, the future...

    Read Article
  • What is an SBOM? A deep dive.

    What is an SBOM? A deep dive.

    By now, you’ve probably heard the term software bill of materials (SBOM). It’s become the security buzzword of the year. Let’s look a little deeper into the what a SBOM is, what it...

    Read Article
  • Why NPATH is a Terrible Code Metric

    Why NPATH is a Terrible Code Metric

    I’m on a MISRA committee to specify a standard for code metrics (aka measures) for software quality. The committee was formed to fill a gap: there are no good comprehensive standards...

    Read Article
  • SAST and Unit Testing are a Perfect Match: CodeSonar and VectorCAST Integration

    SAST and Unit Testing are a Perfect Match: CodeSonar and VectorCAST Integration

    VectorCAST is an embedded software testing platform from Vector Informatik that supports the creation and management of test assets to help software developers validate software...

    Read Article
  • Automotive Software Safety and Security Still Needs Improvement

    Automotive Software Safety and Security Still Needs Improvement

    A recent blog post, “Automotive software defects”, from Phil Koopman, Carnegie Mellon professor and author of “Better Embedded Software”, talks about increasing number of software...

    Read Article
  • Software Supply Chain Security – The New Cybersecurity Executive Order Explained

    Software Supply Chain Security – The New Cybersecurity Executive Order Explained

      The New Cybersecurity Executive Order Explained.The recent Cybersecurity Executive Order puts a strong emphasis on improving software supply chain security. With vulnerabilities...

    Read Article
  • Securing Industrial Automation and Control Systems Starts in Software Development

    Securing Industrial Automation and Control Systems Starts in Software Development

    Following the IEC 62443 standard for security software development ensures quality, safety and security

    Read Article
  • Software Bill of Materials Required by 2021 Cyber Security Executive Order

    Software Bill of Materials Required by 2021 Cyber Security Executive Order

    A new Presidential Executive Order was just signed highlighting the need to enhance the software supply chain as one of the measures for improving the nation’s cybersecurity. With too...

    Read Article
  • GrammaTech Releases CodeSonar 6.0 with Improved Analysis, Visualization, Reporting and Unified Java Analysis

    GrammaTech Releases CodeSonar 6.0 with Improved Analysis, Visualization, Reporting and Unified Java Analysis

    Over the years we have seen our customers “shifting left” to take advantage of building in security versus testing for security later in the lifecycle. As advanced SAST tools such as...

    Read Article
  • Multi-language SAST and SCA for Android Platforms and Applications

    Multi-language SAST and SCA for Android Platforms and Applications

    Android is, for most people, a mobile operating system for their phone or tablet. In fact, it’s an extremely successful open source platform in general. It’s common in automobile...

    Read Article
  • GrammaTech Congratulates Long Time Customer, Jet Propulsion Laboratory, on their Successful Landing of Perseverance Rover

    GrammaTech Congratulates Long Time Customer, Jet Propulsion Laboratory, on their Successful Landing of Perseverance Rover

    Read Article
  • On Demand Webinar featuring Solid Sands | Safety and Security Critical Software: Start with the End in Mind

    On Demand Webinar featuring Solid Sands | Safety and Security Critical Software: Start with the End in Mind

      Software development is hard work. Developing C or C++ software that has to be safe and secure is even more difficult. How do you ensure that your end-product behaves the way...

    Read Article
  • On Demand Webinar featuring Forrester | Binaries, the Hidden Side of Software Composition Analysis (SCA)

    On Demand Webinar featuring Forrester | Binaries, the Hidden Side of Software Composition Analysis (SCA)

        Many SCA solutions require source code for their bill-of-materials and vulnerability analysis. However, source code is not always available for much of the supply chain you...

    Read Article
  • 2020: Looking Back on GrammaTech's Year

    2020: Looking Back on GrammaTech's Year

    Surely 2020 will go down in the history books as an exceptional year to put it mildly. Despite the huge impact of the COVID-19 pandemic on the world, it certainly impacted us and our...

    Read Article
  • Securing the Software Supply Chain Goes Beyond Application Development

    Securing the Software Supply Chain Goes Beyond Application Development

    In July 2017, one of the biggest data breaches was due to an insecure and out of date web application platform. This breach would have been prevented if the Apache Struts platform the...

    Read Article
  • Webinar Recording - A Demonstration by CS Group USA on CodeSonar and LEAFS to Reduce Cost and Time in Software Development

    Webinar Recording - A Demonstration by CS Group USA on CodeSonar and LEAFS to Reduce Cost and Time in Software Development

          Strong software development teams have a well-defined process and are supported by a strong tooling environment. CS Group USA and GrammaTech highlight in...

    Read Article
  • SWAP Detector: Preventing API Errors from Swapped Arguments

    SWAP Detector: Preventing API Errors from Swapped Arguments

    Third-party application programming interfaces (APIs), libraries, and frameworks are a fact for modern software developers. They are usually complex, rapidly evolving, and sometimes...

    Read Article
  • Alan Shimel Interviews GrammaTech on TechStrong TV

    Alan Shimel Interviews GrammaTech on TechStrong TV

        Interested in what the teams at GrammaTech have been working on? Alan Shimel at TechStrong.tv sat down with Mark Hermeling on November 19 in this...

    Read Article
  • loading
    Loading More...