industry news
Subscribe Now

Cybersecurity and Service at Forefront of CodeSonar 4.5 Static Analysis Release

Rapid development environment, new secure coding checkers to thwart cybercrime, improved floating point support, and Software Assurance Services come to CodeSonar 4.5 today.

Ithaca, NY (USA) — December 4, 2017 – Software teams looking to improve code quality and security have an updated tool for their toolbox. GrammaTech, a leading provider of software assurance tools and cybersecurity solutions, today announced immediate availability of CodeSonar 4.5, bringing a comprehensive set of enhancements, as well as static-analysis-as-a-service, to the advanced tool.

In addition to the technical updates of the tool, software teams can now reap the benefits of higher code quality even faster with Software Assurance Services, GrammaTech’s offering of static analysis as an on-premises service. GrammaTech’s senior consultants will manage the static analysis workflows and processes, allowing customers to focus on resolving the defects reported even more efficiently.

CodeSonar 4.5 brings a host of new features to software teams seeking to improve their secure software development lifecycle (SDLC). C++ and Python APIs have been introduced allowing software teams to rapidly build domain specific checks to express their design invariants for CodeSonar to evaluate. An API is also available to quickly add support for new compilers. Additionally, improved floating point support allows CodeSonar to find more defects in code paths that rely on decisions involving floating point computations.

New checkers have been made available in CodeSonar 4.5 to detect malicious code that has purposely or inadvertently been added into code.  These checkers help combat the rise of cybercrime within companies. According to an IBM study, 32% of attackers are insiders and 24% are “inadvertent actors” (e.g. people making mistakes that lead to a system breach or incorrect behavior). The new checkers highlight suspicious code before it can pose a problem in deployed systems.

“This release underlines GrammaTech’s commitment to helping our customers improve their software assurance processes,” says Mark Hermeling at GrammaTech. “CodeSonar growth rate is double the market growth, which shows our customers’ appreciation for our continued efforts and innovation.”

The update is available as a free upgrade to all licensed customers under active support and maintenance contracts. A 30-day free trial of CodeSonar 4.5 is also available at go.grammatech.com.

About GrammaTech:

GrammaTech’s advanced static analysis tools are used by software developers worldwide, spanning a myriad of embedded software industries including avionics, government, medical, military, industrial control, and other applications where reliability and security are paramount. Originally developed within Cornell University, GrammaTech is now a leading research center for software security and a commercial vendor of software-assurance tools and advanced cyber-security solutions. With both static and dynamic analysis tools that analyze source code as well as binary executables, GrammaTech continues to advance the science of superior software analysis, providing technology for developers to produce safer software. For more information, visit www.grammatech.com or follow us on LinkedIn.

Leave a Reply

featured blogs
Sep 21, 2018
在这我们谈论的不是您的叠层设计跟其他人比怎么样,而是您设计的 PCB 层叠结构,是刚性板、柔性板、刚...
Sep 21, 2018
  FPGA luminary David Laws has just published a well-researched blog on the Computer History Museum'€™s Web site titled '€œWho invented the Microprocessor?'€ If you'€™re wildly waving your raised hand right now, going '€œOoo, Ooo, Ooo, Call on me!'€ to get ...
Sep 20, 2018
Last week, NVIDIA announced the release of the Jetson Xavier developer kit. The Jetson Xavier, which was developed in OrCAD, is designed to help developers prototype with robots, drones, and other......
Sep 18, 2018
Samtec performs several tests in-house as part of our qualification testing on a product series; including Low Level Contact Resistance (LLCR). It measures the amount of resistance in a position on a part. LLCR is used in combination with several other tests to track the over...