EEJournal

industry news
Subscribe Now
April 4, 2014

GrammaTech Releases CodeSonar 4

ITHACA, N.Y., April 3, 2014 /PRNewswire/ — GrammaTech, Inc., a leading maker of tools that improve and accelerate embedded software development, today announced the commercial availability of CodeSonar 4, the latest version of the company’s flagship software analysis tool for C/C++, Java, and machine code. Designed to meet the growing challenges of embedded app developers, CodeSonar 4 includes new capabilities for analyzing third-party code, achieving standards compliance, eliminating challenging multi-core issues, and improving code security by addressing dangerous information flows. CodeSonar advances the state of the art in automated code analysis to help embedded development teams improve code quality and security while accelerating time-to-market.

“The cost of failure in embedded systems is unlike that of any other industry due to the safety-critical role they play in our everyday lives – which is a main reason organizations who build embedded applications are early adopters of automated advanced code analysis tools like CodeSonar,” said Andre Girard, Senior Analyst at VDC. “Teams that leverage innovative technology to tackle the pressing challenges of embedded software development today such as the use of third-party code, compliance with standards, and the complexity of concurrency can realize significant business and competitive advantages.”

Designed for zero-tolerance defect environments, CodeSonar analyzes binary code and source code, to identify serious security and quality liabilities that cause system crashes, memory corruption, leaks, data races, and other unexpected vulnerabilities. New advances in CodeSonar 4 address:

  • Software Supply Chain Risk Management (SCRM) – New Integrated Binary Analysis in CodeSonar 4 empowers developers to analyze externally produced software without access to its source code. This eliminates the dangerous quality and security blind spots created by using open source or third-party components and libraries in embedded applications.
  • Standards Compliance – The increasing regulation of embedded software in the form of industry-specific standards for code quality/security continues to gain international momentum. CodeSonar 4 will include built-in analysis for MISRA C 2012, in addition to existing DO-178 analysis capabilities, to help organizations pursue and achieve relevant certifications.
  • Multi-Core Development – With growing usage of multi-core processors and greater dependence on multi-threaded software, CodeSonar 4 delivers new Java-specific concurrency defect detection capabilities to defend against errors like race conditions, deadlocks, and livelocks.
  • Embedded Security – As networking and internet-enabled capabilities continue to proliferate within embedded systems, the attack surface of traditionally isolated applications has expanded in new and unpredictable ways. In addition to robust existing security features, the new visual tainted-data analysis capability in CodeSonar 4 helps developers find and eliminate vulnerabilities caused by potentially dangerous information flows.

“CodeSonar 4 is the automated code analysis tool designed specifically for the rigorous security and quality demands of embedded software,” said Paul Anderson, Vice President of Engineering at GrammaTech. “CodeSonar 4 will address the most complex challenges facing embedded developers by using new analysis capabilities to eliminate the most costly and hard to find defects early in the application development lifecycle.”

To learn more about how CodeSonar 4 accelerates, improves, and secures the production of embedded software, download GrammaTech’s new white paper ‘Embedded Software Design: Best Practices for Static Analysis Tools.’

About GrammaTech: 

GrammaTech tools are used by software developers worldwide, spanning a myriad of embedded software industries including avionics, government, medical, military, industrial control, and other applications where reliability and security are paramount. Originally developed within Cornell University, GrammaTech is now a leading research center for software security and a commercial vendor of software-assurance tools and advanced cyber-security solutions. With both static and dynamic analysis tools that analyze source code as well as binary executables, GrammaTech continues to advance the science of superior software analysis, providing technology for developers to produce safer software. To learn more about GrammaTech, visit www.grammatech.com.

Leave a Reply

featured blogs
Captivating Component Art
May 2, 2024
I'm envisioning what one of these pieces would look like on the wall of my office. It would look awesome!...
More from Max's Cool Beans...
Why Analog Design Challenges Need Breakthrough Technologies
Apr 30, 2024
Analog IC design engineers need breakthrough technologies & chip design tools to solve modern challenges; learn more from our analog design panel at SNUG 2024.The post Why Analog Design Challenges Need Breakthrough Technologies appeared first on Chip Design....
More from Synopsys...

featured video

Why Wiwynn Energy-Optimized Data Center IT Solutions Use Cadence Optimality Explorer

Sponsored by Cadence Design Systems

In the AI era, as the signal-data rate increases, the signal integrity challenges in server designs also increase. Wiwynn provides hyperscale data centers with innovative cloud IT infrastructure, bringing the best total cost of ownership (TCO), energy, and energy-itemized IT solutions from the cloud to the edge.

Learn more about how Wiwynn is developing a new methodology for PCB designs with Cadence’s Optimality Intelligent System Explorer and Clarity 3D Solver.

featured paper

Designing Robust 5G Power Amplifiers for the Real World

Sponsored by Keysight

Simulating 5G power amplifier (PA) designs at the component and system levels with authentic modulation and high-fidelity behavioral models increases predictability, lowers risk, and shrinks schedules. Simulation software enables multi-technology layout and multi-domain analysis, evaluating the impacts of 5G PA design choices while delivering accurate results in a single virtual workspace. This application note delves into how authentic modulation enhances predictability and performance in 5G millimeter-wave systems.

Download now to revolutionize your design process.

featured chalk talk

Data Connectivity at Phoenix Contact
Sponsored by Mouser Electronics and Phoenix Contact
Single pair ethernet provides a host of benefits that can enable seamless data communication for a variety of different applications. In this episode of Chalk Talk, Amelia Dalton and Guadalupe Chalas from Phoenix Contact explore the role that data connectivity will play for the future of an all electric society, the benefits that single pair ethernet brings to IIoT designs and how Phoenix Contact is furthering innovation in this arena.
Click here for more information about Phoenix Contact Single Pair Ethernet (SPE) Connectors
Jan 5, 2024
16,567 views