- info@klocwork.com
- 1.866.556.2967
- Contact Us
- Blog
- Support
Industry Articles
Dr Dobb's: Source Code Analysis Tool Extended for Multi/ManyCoreKlocwork intros multicore support to address endian and concurrency issues.
Methods and Tools: Delivering Working Code through Automation and CollaborationFocused on Agile, this article discusses why a repeatable process for ensuring code is bug-free is key to fully realizing the benefits of Agile.
EE Times: Modernizing the Peer Code Review ProcessWith data from a new independent Forrester report, this article looks at the state of today's code review practices.
Dr Dobb's: When Quality, Security CountKlocwork customer ACI Worldwide talks static code analysis tools and the difference they can make for code quality and security.
DZone: Code Review Tools and TechniquesArming developers with the knowledge of code review tools and techniques can increase efficiency and reduce the pain of code inspection.
SD Times: Making the Case for Code ReviewThe practice of code review is a lot like going to the gym: You know it's good for you, but you don't always do it.
CTOEdge: Rethinking the Application Code Review ProcessNew approaches to application development, coupled with the availability of a plethora of online collaboration tools, are going to change the way IT organizations handle application code reviews.
EE Times: Using Static Code Analysis for Agile Software DevelopmentTakes a look at why source code analysis is an ideal tool for using in Agile development.
Aerospace IT Yearbook: Bugs in the AirExploring the challenges that widespread use and re-use of software in aviation manufacturing poses, and discussing best practices for ensuring software security and quality across large and complex code bases.
CTOEdge: Mad Dogs and DevelopersGetting developers to work collaboratively in teams is one of the hardest things that any IT leader has to do. Putting a framework in place to facilitate collaboration might help reduce the friction.
SearchSoftwareQuality: Agility and Automation Mark New Application Development and QA ToolsSoftware developers and testers have some new tool choices to help with agile computing issues like velocity and automation.
Internet Telephony: A Matter of IntegrityTools that deliver software assurance go mainstream.
DZone: Static Analysis with KlocworkTaking an in-depth look at Insight Pro and its static analysis engine.
TMC.net: Klocwork Targets Developer ProductivityThe solution incorporates three new tools which will help software development organizations in streamlining the development process, and cutting down the risk of bug debt.
SD Times: Klocwork Takes on Strengthening Code CreationKlocwork is spreading out beyond the static analysis game and rolling out new software to help ensure the creation of strong code.
InfoWorld: Klocwork Tunes Software Code Analysis Suite for Agile ProjectsVersion 9.0 of company's Insight Pro product features collaborative code review
EE Times.com: Software Tools Suite Simplifies Source Code AnalysisKlocwork Insight Pro increases productivity for the Agile software developer
Aerospace International: Squashing the BugsWith new aircraft now being highly software dependent, software verification and integrity is becoming ever more vital. This article looks at squashing software bugs in mission-critical code.
Embedded.com: Top 5 Java Coding MistakesWhile C dominates as the programming language of choice for embedded development, the use of Java is definitely on the rise. Here's a round-up of the top five most common Java coding mistakes to avoid.
Military Embedded Systems: Architectural Visualization Key to Code ReuseExplores why the ability of visualize and analyze a software system’s architecture is key to successful code reuse for military and avionics software systems developers.
Urbancode Integrates Source Code Analysis with Enterprise Continuous IntegrationAnthillPro 3.7 Integrates with Popular Source Code Analysis Tools.
TechNewsWorld: Taking FOSS Security SeriouslyDevelopers of open source software projects should be just as concerned about security as anyone developing a proprietary app. However, the nature of the two development processes can be very different at times, and debate still rages about which is inherently more secure -- a secret code kept by a company, or a public one that all eyes can see.
Test: Doctoring the Code (page 32)Explores how software testing can help save lives while reducing costs in the rapidly changing medical device industry.
JavaOne 2009: On Trust and TypesThe JVM's promise of write once, run anywhere works most of the time. But it can also make programmers complacent about cases where the WORA promise fails.
The Tech Herald: IT And The EconomyLike it or not, economics will pull the strings in any business and, like other departments, IT is affected. In this latest installment of The Tech Herald, Mike Laginski, CEO of Klocwork talked IT and the economy.
SearchSoftwareQuality: The Role of Quality Assurance Pros in Software SecurityWhat quality assurance (QA) analysts, engineers and testers can do to reduce business risks in the area of software security.
SearchCloudComputing: Software Quality Vendors Roll Out ALM, Testing and Quality ProductsSpring has ushered in a spate of new product announcements targeted at quality assurance professionals and software testers.
STP: Garbage Time is Not Just For BasketballWhen the Java Virtual Machine comes into play, garbage time isn’t just for basketball players.
SD Times: Think like a HackerIn the eyes of Mike Weider, the correct way of doing software security testing requires getting into the mind of the hacker.
How Software is Built: Executive &AQIn this interview we talk with Gwyn Fisher, CTO of Klocwork about the value of automated code review, the advantage of code review at the developer level, judging the security of open source code bases, and more.
Dr Dobb's: Tips and Tricks for Secure CodingThis technical article is focused on best practices for secure coding and includes detailed code examples and explanations of how insecure code can be exploited by hackers.
TechNewsWorld: Software, Trust and DemocracyThis technical article looks at the importance of enhancing software validation on e-voting systems.
SearchSoftwareQuality: Static Analysis Tool Helps Software Engineers Find Bugs During BuildsWhen Mentor Graphics Inc. decided to switch to an agile methodology, the company needed a source code analysis tool that fit its development methodology and its complex code base. Klocwork Insight, a static analysis tool, provided the right services and conformed to Agile principles.
Tech Herald: Executive &AQKlocwork talks one-on-one with The Tech Herald about PCI Compliance and software security.
InfoQ: Klocwork Insight Brings Code Analysis to the DesktopEarlier this year Klocwork released a desktop product, Klocwork Insight, bringing their automated source code analysis features to individual developers. Insight is available in both C++ and Java versions. Until now the industry has frequently made use of source code analysis after the checkin process during the system building phase of a project. Insight moves up the application of source code analysis to the build and implementation portion of the development lifecycle. Insight can be integrated in a variety of ways from the Java perspective.
Better Software: Give your Defects Some StaticFeeling that powerful analysis techniques are often overshadowed by testing and review when it comes to creating high quality software, Lawrence Livermore National Labs wrote this article which makes a compelling business case for the use of static analysis tools.
SD Times: 2008 SD Times 100Based on the results of the SD Times 100 for 2008 - SD Times' annual recognition of top innovators and leaders in software development - this article provides a good rounds-up the major players in the software tools and application lifecycle space.
Embedded.com: Faster! Can we design embedded systems faster, cheaper, better?Embedded systems engineers must work smarter because faster may not be humanly possible.
The Economist: Software That Makes Software BetterModern civilisation depends on software, so it needs to be as reliable as possible. But software is produced by humans, who are fallible.
SD Times: Holding ISVs to a Higher Security StandardYour brand new sweater has a hole in it. The coffee maker you got for Christmas doesn’t power up when you plug it in. No problem. But what about that security defect you found in the software you licensed last month?
Internet News: Klocwork Expands Code InsightWhere is the best time and place to find bugs in an application? According to code analysis vendor Klocwork, the best place is the source: the developer that writes the code.
RedmondDeveloperNews: Klocwork Unveils Static Analysis Debug ToolKlocwork officials on Monday announced the debut of a new static analysis tool that aims to ensure quality and security in the code development process, both at the level of the desktop and organization wide.
SD Times: Klocwork Insight Integrates Static Analysis With IDEsDevelopers, not downstream organizations, will be able to analyze code before they check it in.
SearchSoftwareQuality: Developers Get Bigger Role in Software Quality, SecurityIn the continuing drive to address quality and security earlier in the software development lifecycle (SDLC), two thought leaders in the automated source code analysis market -- Klocwork and Ounce Labs -- are targeting new releases at the developer.
eWeek: Klocwork Adds Insight to Coders' DesktopsA new tool from Klocwork leverages system-wide source code analysis to help developers find bugs as they work.
The Rational Edge: Securing Your IT InfrastructureSecure programming, as well as the practice of securing an enterprise's IT infrastructure, is an exercise in risk management. There is no single solution to all possible vulnerabilities, but knowing what solutions are available, their limitations, and where they fit in the spectrum of possible risk mitigation activities will put you far ahead of the pack.
Embedded Computing: New Threats Demand New Code Analysis ToolsDevelopers cannot depend on old code review processes and testing tools to find all the bugs and potential vulnerabilities in today's connected devices. Modern static analysis tools, however, provide a complete system view and detect any weaknesses in the code that could lead to a malicious attack.
SD Times: Klocwork Wins SD Times Award For Third Straight YearFoiling malicious attacks where they may strike! Stomping out evil, site-bleeding bugs from the netherworld! Single-handedly lifting development teams out of harm's way! Look! Up and down the list! It's a leader! It's an influencer! It's the SD Times 100.
Dr Dobb's: Developer's NotebookProvides brief overviews of new development products and the latest releases of existing ones.
Network Computing: Automated Code Scanners - A False Sense of Security?Remember when attackers were just out for fame and glory, and application security was someone else's problem? Big targets like Microsoft and Oracle drew the fire. All enterprise IT had to do was apply patches regularly and keep a properly configured firewall.
Network Computing: Code Scanners Run The GauntletWe brought three popular static source-code analyzers into our Chicago Neohapsis Real-World Labs®: Fortify Source Code Analysis (SCA) Suite 4.0, Ounce Labs' Ounce 4.1, and Klocwork K7 7.5.
InfoWorld: Preview - Klocwork Developer for JavaKlocwork, the company that earned InfoWorld's nod for best code analyzer solution for 2006, made a subset of its K7 analyzer engine available yesterday as an Eclipse plug-in at a discounted price.
InfoWorld: 2007 Technology of the Year Awards: App DevKlocwork K7 is a robust and scalable analytical suite for C, C++, and Java, featuring excellent defect discovery and extensive tools for managing the many results.
Speeding Up Time To MarketFreelance Tech Writer Paul Hyman Reports on 'Moving Faster Than Ever'
Better, Newer, NowDevelopers Must Improve Software Quality and Innovate Products By Adopting a New View of Software Development and Using New Tools
Review: Source-Code Assessment Tools Kill Bugs DeadSource-Code Assessment Tools Identify Security Holes Resulting from Shoddy Development
Software Development: A Discipline, Not an ArtSoftware Must Be Treated as a Critical Business Asset
Software Bugs Grow With ComplexitySoftware Bugs Causing Total System Failure Can Be Prevented When Caught Early
OMG Announces Architecture-Driven Modernization WorkshopModernization Starts Where Existing Practices Fail to Deliver Against Business Objectives
Developing Secure Software is a Management IssueExecutives Demand IT Improvements to the Development Process
Don't Let Your Applications Get You DownKlocwork Products Protect and Prevent Software from Malicious Activity
Worlds of Defect Tracking, Vulnerabilities CollideKlocwork Brings Both Capabilities Into K7, It's Latest Static Code Analysis Release
Klocwork: Better Security and Better Software QualityMany Companies Continue to Invest in Firewalls, IDSs, and Anti-Virus Software Yet Continue to Suffer From Damaging Security Breaches
Checklist for Building Better SoftwareDjenana Campara, Founder and CTO of Klocwork, Outlines a Checklist to Help Managers Find and Resolve Coding Flaws
J2EE and .NET: So Alike, But Still Very DifferentJ2EE and .NET Compete through Application Development and Deployment Environments
SD Times Talks Security as a ProcessWriting Code That Can't Be Hacked is Only Half the Battle
In this section
Klocwork Newsfeed
Subscribe to the Klocwork RSS feed for the latest news and announcements.
Subscribe Now!Relevant Reads
FACT SHEET: Corporate Overview
Delivering tools that help developers identify critical security vulnerabilities, quality defects and architectural issues quickly and accurately [...]
CASE STUDY: Raytheon
This case study looks at overcoming the challenges of reusing legacy code in the defense and aerospace sector [...]
WHITE PAPER: Modernizing Code Review
Get specific recommendations on how to implement a simple, effective code review process that takes advantage of the latest tools and technologies [...]