Software Integrity

Archive for November 2004


Static analysis for security

Originally published in IEEE Security & Privacy All software projects are guaranteed to have one artifact in common—source code. Together with architectural risk analysis[1], code review for security ranks very high on the list of software security best practices (see Figure 1[2]). Here, we’ll look at how to automate source code security analysis with static […]

Continue Reading...

Posted in Software Security Testing, Static Analysis (SAST) | Comments Off on Static analysis for security