Bethesda, Maryland. GrammaTech released information detailing that Battery Ventures has obtained its software products division, which includes the CodeSonar* and CodeSentry* products. The purchase creates a completely different company doing business as CodeSecure, Inc. GrammaTech currently, and still will, develop and integrate new advancements for the U.S. defense sectors.

embedded world Exhibition&Conference 2023 ended a week ago and I had some time to reflect on topics and discussions on the exhibit floor. I have a love-hate relationship with tradeshows. On one hand, they are great to speak with a lot of different people from different backgrounds in a short amount of time, and I love doing that. On the other hand, it is a lot of walking and standing about.

Just when you think it’s safe to go back in the water…I’m making an analogy about secure designs. Just when you think the engineering community understands that their designs need to be secure, some research pops up to show that that’s not really the case.

Most software components used in automobiles are not developed directly by car manufacturers themselves or even their top-tier suppliers. Software comes from a wide range of vendors, including embedded GUI frameworks, middleware, operating systems, navigation, and telecom software components, among many others.

It’s easy for security teams and software developers to be overwhelmed with the endless stream of software vulnerabilities reported across the hundreds of applications used by a typical large enterprise. But not all software vulnerabilities are created equal and need immediate attention.

By nature, automotive software is complex. 

This paper discusses how static analysis tools provide an ideal (and automated) companion to code reviews by supporting the process and increasing the defect removal rate.