Resource Library: Whitepapers, Review, Case Studies

Case Study

Giving defects some static: Lawrence Livermore

Feeling that powerful analysis techniques are often overshadowed by testing and review when it comes to creating high quality software, representatives at Lawrence Livermore National Labs wrote this article which makes a compelling business case for the use of static analysis tools. The article contains results from two case studies where automated source code analysis tools were run on C++ code.

TAGS: BUG IDENTIFICATION, DEFECT DETECTION, SOFTWARE QUALITY, SOURCE CODE ANALYSIS, STATIC ANALYSIS

Case Study

Addressing FDA Validation: Stockert

As a manufacturer of medical electronics, meeting the FDA's rigorous safety and quality standards is crucial to Stockert. With the safety of their devices depending significantly on the quality of software they develop, Stockert invested in Klocwork's source code analysis tools. Learn how their static analysis deployment has helped Stockert achieve FDA certifications, gain more trust in their code quality, and increase development efficiency.

TAGS: CODING STANDARDS, DEFECT DETECTION, DEVELOPER PRODUCTIVITY, MEDICAL DEVICES, SOFTWARE QUALITY, SOURCE CODE ANALYSIS, STATIC ANALYSIS

Case Study

Software reliability on space missions: LASP

The driving objective of the Laboratory for Atmospheric and Space Physics (LASP) at the University of Colorado is research in atmospheric science, space physics, solar influences, and planetary science, supported by the technological contributions of its engineering and mission operations divisions. To better ensure the reliability of key data processing software, LASP has introduced Klocwork Insight into several projects.

TAGS: AVIONICS, BUG IDENTIFICATION, DEFECT DETECTION, LANGUAGE: C

Case Study

Enhancing software reliability: Johns Hopkins

Tasked with building the embedded software component for a next-generation human prosthetic, the Johns Hopkins University Applied Physics Laboratory software team turned to Klocwork's source code analysis tools to help ensure the software's reliability and boost developer productivity.

TAGS: DEFECT DETECTION, DEVELOPER PRODUCTIVITY, EMBEDDED PROGRAMMING, LANGUAGE: C, MEDICAL DEVICES, SOURCE CODE ANALYSIS

White Paper

Streamlining D0-178B Efforts with Static Analysis

Given the complexity of today's airborne software systems, the use of automated tools can assist in the successful on-time and on-budget delivery of these projects. Automated source code analysis tools locate and describe areas of weakness in source code, and can help address key areas of the DO-178B guidance related to the Software Verification and Software Lifecycle Data requirements. In this white paper, learn how the defect, architecture, and metrics analysis capabilities of Klocwork Insight can be used to ... More

TAGS: AVIONICS, DEFECT DETECTION, DO-178B, INSIGHT, SOFTWARE ARCHITECTURE, SOFTWARE METRICS

White Paper

Source Code Analysis in an Agile World

To keep pace with ever-increasing customer demands on software functionality and time-to-market expectations, software developers have had to evolve the way they develop code to be both faster and higher quality. As part of this trend, Agile development practices are becoming more commonplace. However, to fully realize the benefits of Agile development, it is critical to have a repeatable process for ensuring code is as free of defects and security vulnerabilities as possible. This paper examines how the use of ... More

TAGS: AGILE DEVELOPMENT, DEFECT DETECTION, SOFTWARE SECURITY, SOURCE CODE ANALYSIS

Case Study

Static analysis to find bugs early: Iskratel

Iskratel employs over 400 developers writing complex software to drive advanced communications technologies. These applications typically include between 1 and 1.5 million lines of code, written in C, SDL, Java and C++. To identify the best testing solution to eliminate bugs early in the development lifecycle, Iskratel conducted a head-to-head competitive evaluation of three products, and ultimately selected Klocwork's source code analysis tools. This case study looks at how Iskratel uses automated source code ... More

TAGS: DEFECT DETECTION, DEVELOPER PRODUCTIVITY, NETWORK AND TELECOM EQUIPMENT, STATIC ANALYSIS

On-Demand Webinar

Are Code Reviews Keeping Pace?

Join our guest speaker Dave West, Senior Analyst, Forrester Research, Inc., as he reviews the findings of a recent code review study and discusses why it’s time for software development organizations to exploit modern technology to improve the code review process. Learn about the key challenges of code review and recommendations on ways to improve the process right from the analyst himself.

TAGS: CODE REVIEW, DEFECT DETECTION, SOFTWARE QUALITY, SOFTWARE SECURITY, STATIC ANALYSIS

On-Demand Webinar

Introduction to Klocwork Insight 9.5

We're setting a new standard for static analysis tools with the launch of Klocwork Insight 9.5. The latest release of our flagship product brings on-the-fly static analysis capabilities to the desktop, allowing developers to fix critical defects the moment they're introduced. Features covered in this webinar: On-the-fly static analysis that instantly underlines defects as code is written Drag and drop reporting that answers complex questions about the security and reliability of your code On-the-fly impact ... More

TAGS: DEFECT DETECTION, INSIGHT 9.5, SOFTWARE QUALITY, SOFTWARE SECURITY, SOURCE CODE ANALYSIS

White Paper

Accurate, Scalable Whole Program Analysis

Automated source code analysis locates and describes areas of weakness in source code. Those weaknesses might be security vulnerabilities, logic errors, implementation defects, concurrency violations, rare boundary conditions, or many other types of problem-causing code. The name of the associated research field is static analysis and while the technology has been around for decades - primarily in the form of lint tools - modern static analysis has little in common with its well known but much maligned ... More

TAGS: DEFECT DETECTION, SOFTWARE QUALITY, SOFTWARE SECURITY, STATIC ANALYSIS, TRUEPATH

Research

The Value and Importance of Code Reviews

This exclusive study commissioned by Klocwork and conducted by Forrester Consulting provides valuable data and insights that will help you benchmark and improve your peer code review practices, including: top code review challenges; respondent's feedback on code review benefits, frequency, and technologies; and recommendations on modernizing code reviews.

TAGS: CODE REVIEW, DEFECT DETECTION, SOFTWARE SECURITY, STATIC ANALYSIS

Research

Improving Software by Reducing Coding Defects

Software coding defects increase the cost of development and support, tarnish a company's reputation, and limit revenue opportunities. This research report from the New Rowley Group discusses how investing in a defect detection and prevention solution enables companies to catch defects early, limit their financial impact, and institute a proactive approach to defect prevention.

TAGS: DEFECT DETECTION, SOFTWARE QUALITY

On-Demand Webinar

Exploiting & Preventing a Firefox Vulnerability

During this web seminar you will see how easy it is to exploit security vulnerabilities caused by common software defects. Watch how a simple hack on an older version of FireFox enables a hacker to gain full access to a remote machine. More importantly, see how this same vulnerability could have been prevented through the use of static analysis.

TAGS: DEFECT DETECTION, INSIGHT, STATIC ANALYSIS

Resources

Browse Categories

Browse Tags