- info@klocwork.com
- 1.866.556.2967
- Contact Us
- Blog
- Support
Industry Initiatives
Klocwork is pleased to work with the following organizations in our common pursuit of advancing the software development industry's understanding of software security and software quality.
Common Weakness Enumeration (CWE)
CWE™, or Common Weakness Enumeration, is a community-developed dictionary of common software weaknesses. International in scope and free for public use, CWE provides a unified, measurable set of software weaknesses that will enable more effective discussion, description, selection, and use of software security tools and services that can find these weaknesses in source code.
[cwe.mitre.org]
National Institute of Standards and Technology (NIST)
Founded in 1901, NIST is a non-regulatory federal agency within the U.S. Commerce Department's Technology Administration. NIST's mission is to promote U.S. innovation and industrial competitiveness by advancing measurement science, standards, and technology in ways that enhance economic security and improve our quality of life. Klocwork supports the efforts of NIST through our contributions to SAMATE.
[www.nist.gov ]
CERT / Software Engineer Institute
In association with the Software Engineering Institute (SEI) at Carnegie Mellon University, the CERT Secure Coding Initiative works with software developers and software development organizations to reduce vulnerabilities resulting from coding errors before they are deployed. CERT identifies common programming errors that lead to software vulnerabilities, publishes secure coding standards, and educates software developers with the goal of advancing the state of the practice in secure coding.
[www.cert.org]
Software Assurance Metrics and Tool Evaluation (SAMATE)
SAMATE (or, the Software Assurance Metrics and Tool Evaluation) is sponsored by the U.S. Department of Homeland Security (DHS) National Cybersecurity Division and NIST. The objective of part 3, Technology (Tools and Requirements) is the identification, enhancement and development of software assurance tools. NIST is leading in (A) testing software evaluation tools, (B) measuring the effectiveness of tools, and (C) identifying gaps in tools and methods. The SAMATE project supports the DHS Software Assurance Tools and R&D Requirements Identification Program.
[samate.nist.gov]
Java Community Process (JCP)
Since its introduction in 1998 as the open, participative process to develop and revise the Java™ technology specifications, reference implementations, and test suites, the Java Community Process (JCP) program has fostered the evolution of the Java platform in cooperation with the international Java developer community. As a member of this community, Klocwork will work within the JCP to ensure our products stay current with evolutions of the Java platform.
Java, Java Community Process, JCP, and the Java Community Process Logo are trademarks or registered trademarks of Sun Microsystems, Inc. in the United States and other countries.
In this section
Klocwork Newsfeed
Subscribe to the Klocwork RSS feed for the latest news and announcements.
Subscribe Now!