|
|
|
 |
Static Analysis: Java
Java Static Analysis Tool identifies defects or vulnerabilities in the code by analyzing the current state of code based on each of the paths generated through the correctness of data-flow analysis according to the correct order of execution of subprograms and functions within the whole program.
Recently, automotive embedded software such as autonomous and shared services to be installed in future automobiles require the software dependability for electric vehicles to be covered reliability and security. Therefore, the required information security service (confidentiality, integrity, availability, authentication) in automotive embedded software is required essential in the coding stage.
|
 |
 Industry Coding Standards Compliance
Coding Guide: Oracle Code Convention, JPL-Java, etc.
Run-time Guide(CWE4.17): CWE-660(Java: 77 Rules)
Security Vulnerability: CWE(CWE4.17), OWASP(2021), CERT(Java)
(Other Code Assurance) Code Metrics, SQL, XML, etc.
Supported Compilers for Java
(Java Language Standard) Java 5, 8, 11, 17, 21
(2nd Code Analysis) Configuration File, XML, SQL, etc.
Using Static Analysis
(no False Positive) Source code analysis based on Inter-procedural path analysis
- (defect message) Sentence and location message of the defect's cause
(no Rule Option) No need to set option due to path-based code context analysis
(Rule Design) "One Guide to One Rule"rule design (to prevent duplicate rule)
(Exception Code Process) Automatic Management of Exception Codes
(SDLC Chain) Interworking with Software Configuration management
(Plug-in) Eclipse, Intellij, Jenkins, etc.
SW Safety Requirements Compliance
ISO 26262(Automotive), DO 178(Aerospace), IEC 61508(Industrial), EN 50128(Railway), IEC 62304(Medical), etc.
|
|
|
|
|
|
|
 |
Head Office: 3F, KAITS, 34, Seoun-ro 1-gil, Seocho-gu, Seoul 06732, KOREA
Tel +82-2-553-9464, info@soft4soft.com
Copyright¨Ï2016 Soft4Soft, All rights reserved. Designed by Meettech.
|
 |
 |
 |
 |
|
|
| ||
|
