This website uses cookies to make the content more user-friendly and effective. By using this website, you agree to the use of cookies. You can find additonal information about the use of cookies and the possibility of objecting to the use of cookies here.

25 - 27 February 2020 // Nuremberg, Germany

Conferences and supporting programme

back to day overview
Presentations Exhibitor´s Forum

GrammaTech CodeSonar: Static Analysis for Safety and Vortragssprache Englisch

Static analysis has been proven to improve the quality of software development for very little investment. Embedded software is not different, but it does pose a number of additional requirements on the static analysis tool around safety and security. This presentation will highlight those differences and how GrammaTech CodeSonar addresses them.

Time-to-market often compete with safety and security in embedded systems development. Static analysis improves the quality of your software the moment it is written and such, helps with all of these. Embedded systems puts a lot of requirements on our static analysis tool, so it is important that you pick the tool that properly supports you in your projects. This presentation will explain how safety and security concerns are important to consider.

From a safety perspective, you want a static analysis tool that aggressively finds warnings in your source code. The percentage of ‘recall’, that is, the amount of problems it finds is crucially important. Secondly, you want to make sure you are able to claim credit for your static analysis tool in your functional safety certification process. You may not have a functional safety need just yet, but for many embedded systems this is something that looms on the horizon.

From a security perspective, you want to analyze tainted data, data taken in from the environment and how it flows through your system. A small mistake is easily made and hard to find through manual inspection or testing once it has slipped into your source code base.

Lastly, 3rd party libraries are important. From the GNU C library, to OpenSSL, to Qt, to Glib or libXML. Usage of these libraries is not always uniform and it is easy to lose track of allocated memory, or properly inspect return codes.

CodeSonar provides coverage for all of these concerns and can easily be integrated into your existing, or new projects.

--- Date: 27.02.2019 Time: 2:30 PM - 3:00 PM Location: Exhibitor's Forum, Hall 2, 2-510


 Mark Hermeling

Mark Hermeling

GrammaTech Inc.


The selected entry has been placed in your favourites!

If you register you can save your favourites permanently and access all entries even when underway – via laptop or tablet.

You can register an account here to save your settings in the Exhibitors and Products Database and as well as in the Supporting Programme.The registration is not for the TicketShop and ExhibitorShop.

Register now

Your advantages at a glance:

  • Advantage Save your favourites permanently. Use the instant access – mobile too, anytime and anywhere – incl. memo function.
  • Advantage The optional newsletter gives you regular up-to-date information about new exhibitors and products – matched to your interests.
  • Advantage Call up your favourites mobile too! Simply log in and access them at anytime.