Embedded World 2019
Embedded World 2019 is the leading international fair for embedded systems. The event covers topics such as: security for electronic systems, distributed intelligence, the Internet of Things or e-mobility, and energy efficiency. You’ll be able to see new innovations from over a 1000 exhibitors and learn directly from industry experts presenting on a range of topics during the conference sessions.
Rogue Wave Software will be exhibiting at stand 4-139. Stop by and speak with our experts about Klocwork static code analysis. Klocwork enables developers to deliver secure, reliable, and conformant code. It accurately identifies critical security and reliability issues and supports compliance with key coding standards, such as AUTOSAR C++14, and MISRA, through sophisticated whole program analysis of C, C++, Java, and C# code.
We expect to be busy, so to guarantee face time with us, please contact us to schedule a meeting.
Static code analysis tools are often used in embedded software development to improve the quality and security of embedded systems. Nowadays, many static analysis tools can do deep semantic analysis to find meaningful and critical defects in software. Some can also be used to ensure the software follows specific coding standards relevant to embedded software development, such as MISRA C, MISRA C++, or AUTOSAR C++14.
A static analysis tool can generate many findings and some of these might be false alarms (i.e., false positives) due to the undecidability of static analysis or the trade-off between precision of analysis and optimization for performance and scalability. To help users handle findings, static analysis tools could be augmented by post-processing analyses, examples of which are ranking alarms that are most likely true defects first or clustering defects into similarity groups to reduce the inspection efforts. Other approaches exist as well, and they are useful to reduce the overall manual effort of reviewing the findings.
This paper presents a brief survey of the state of the art for approaches for improving handling of static analysis findings along with results of the author's experiments in a static analysis tool. A discussion of approaches that can be used in safety-critical embedded systems versus non-safety-critical ones is also presented.
February 26 - 28, 2019
8:00 AM Central European Standard Time