MITRE’s 2019 CWE Top 25 list contains many code quality issues that can result in security vulnerabilities. Static analysis can help you mitigate them.
Tech M&A typically evaluates security and legal risks, but what about software quality risks? Poor code and architecture quality can have a lasting impact.
We recently saw the first settlement by a company charged under the False Claims Act for failing to meet cyber security standards. Is there more to come?
Many companies are relaxed about reusing software under the Beerware License and similar open source licenses. But not all such licenses are created equal.
The list of regulatory compliance challenges facing companies grows longer every time a new regulation is introduced. But do security regulations even work?
Posted in Quality & Compliance | Comments Off on Awash in regulations, companies struggle with compliance
Safety-critical software powers everything from airplanes to power plants, defib machines, and seatbelts. And quality issues can lead to injury and death.
Posted in Quality & Compliance | Comments Off on Software quality: It can be a matter of life and death
What did Apollo 11 teach us about software development? Coding practices have changed since 1969, but the lessons learned from the moon mission still hold.
Posted in Quality & Compliance | Comments Off on Apollo 11 software lessons still relevant today
The parts and systems on an airplane don’t have to fail in a big way to have big consequences. A flaw in airline software could be a matter of life or death.
Posted in Quality & Compliance | Comments Off on Hard questions raised when a software ‘glitch’ takes down an airliner
Bypassing compliance with MISRA standards is kind of like asking someone to climb the Half Dome without any sort of harness. Choose your path carefully.