|
|
 |
| Posted: |
10 Apr 2008 |
| Published: |
01 Apr 2008 |
| Format: |
PDF
|
| Length: |
9
Page(s) |
| Type: |
White Paper |
| Language: |
English |
|
ABSTRACT:
Automated source code analysis is technology aimed at locating and describing areas of weakness in source code. Those weaknesses might be security vulnerabilities, logic errors, implementation defects, concurrency violations, rare boundary conditions, or many other types of problem-causing code. The name of the associated research field is static analysis. This is differentiated from more traditional dynamic analysis techniques such as unit or penetration testing by the fact that the work is performed at build time using only the source code of the program or module in question. The results reported are therefore generated from a complete view of every possible execution path, rather than some aspect of a necessarily limited observed runtime behavior. This paper discusses what SCA tools have to offer, why developers should use them when they have other tools to choose from, and why the technology is compelling enough to add to your build chain.
|
 |
|
|
|
BROWSE RELATED RESOURCES:
Application Security | C++ | Java | Software Development Life-Cycles | Software Development Methodologies | Software Quality Assurance | Software Testing | Source Code Control | Source Code Control Software |
|
View All Resources
sponsored by Klocwork |
 |
|
|
|
Cramsession Research Library Copyright © 1998-2008 Bitpipe, Inc. All Rights Reserved. Designated trademarks and brands are the property of their respective owners. TechTarget · 117 Kendrick St · Needham, MA · 02494
Use of this web site constitutes acceptance of the Bitpipe Terms and Conditions and Privacy Policy. cramsession@bitpipe.com
|
