News on Monday
more>>
SharePoint Tech Report
more>>

Download Current Issue
ISSUE 3/15/2010 PDF

Need Back Issues?
DOWNLOAD HERE

Receive the print Edition?

ASP.NET MVC 2 Ships
ASP.NET MVC 2 has shipped.
03/12/2010 10:26 AM EST

Microsoft plans 'open' Silverlight analytics framework
Microsoft is going to announce a multipurpose analytics framework for Silverlight at MIX.
03/11/2010 09:51 AM EST

About CSS processing
Two sites that lead to a startling CSS conclusion.
03/10/2010 02:29 AM EST

3/14/2010 to 3/18/2010
Seattle, Wa.
SHARE

Cloud Connect

3/15/2010 to 3/18/2010
Santa Clara, Calif.
TechWeb

Microsoft MIX10

3/15/2010 to 3/17/2010
Las Vegas
Microsoft

SharePointPro Summit & Expo

3/16/2010 to 3/19/2010
Las Vegas
Penton Media

TheServerSide Java Symposium

3/17/2010 to 3/19/2010
Las Vegas
TechTarget

HOME ALL STORIES LATEST NEWS COLUMNS OPINIONS EDITORIALS GUEST VIEWS SHORT TAKES DATA WATCH SPECIAL REPORTS ZEICHICK'S TAKE SD TIMES 100 EDITORS' BLOG

RSS FEEDS

FACEBOOK

TWITTER

WHITE PAPERS SPONSORED PROFILES JOB BOARD WEBINAR CENTER FREE SOFTWARE BZ RESEARCH ALMSHAREPOINT EVENTS CALENDAR PRINT/PDF EDITION PRINT/PDF BACK ISSUES

SUBSCRIBE TODAY CUSTOMER SERVICE EDITORIAL CALENDAR EDITORIAL BEATS GUEST VIEW GUIDE SD TIMES 100 GUIDE EVENTS CALENDAR ADVERTISING ARTICLE REPRINTS REPORT A BUG SITE MAP

ABOUT US BZ MEDIA NEWS BZ RESEARCH SYSMANNEWS SPTECHCON ESDC IPHONEDEVCON PRIVACY POLICY CONTACT US

Printable version

HOME >> LATEST NEWS

Most Read Latest News Blog Resources

Even with its success, .NET causes some consternation
Despite its popularity, the developer community believes that .NET isn't being fully serve...

Appcelerator dev environment targets Android, iPhone
This unified development environment compiles JavaScript into Objective-C or Java, and wil...

Eclipse creates new sub-projects for Mylyn
The sub-projects are designed to help organizations adopt agile ALM, and they will also br...

IBM pushes EGL as key to legacy modernization
Rational Migration Extension for Rich UI can transform CA green-screen interfaces to EGL c...

Zend Server 5.0 adds debugging for PHP
Black box debugging and a job queue highlight the new features for the latest version of Z...

VersionOne extends agile project management solution
VersionOne Ultimate Edition offers a trio of components that push agile functionality out ...

ASP.NET MVC 2 Ships
ASP.NET MVC 2 has shipped.

Microsoft plans 'open' Silverlight analytics framework
Microsoft is going to announce a multipurpose analytics framework for Silverlight at MIX.

About CSS processing
Two sites that lead to a startling CSS conclusion.

Overcoming Development Challenges with Open Source Open source software can help you with your application development challenges. It doesn’t...

Accelerate Services and the Cloud Business units, functional groups, and different divisions of companies across industries...

Enterprise Mashup Platforms for Today’s Increasingly Complex and Real-Time Context Enterprise Mashups offer your company a new way to connect data from inside and outside yo...

Technorati

Digg

Slashdot

Facebook

Friendfeed

Twitter

del.icio.us

Coverity Takes Its SATs

Coverity has developed a new static code analysis engine

By David Worthington

September 19, 2007 —

In the 1970s there was Lint, a static source code analysis tool that flagged suspicious constructs in C code; false positives were common then, but modern tools can identify a broader range of constructs—with far fewer false positives.

Coverity added a completely new type of source code analysis engine to its Prevent SQS software quality system, in an update released on Sept. 19. Prevent SQS uses a technique called SAT (from Boolean Satisfiability). Unlike many tools, SAT is not based on data flow analysis.

Rather, it complements Coverity’s data flow analysis engine. SAT is concerned with whether a Boolean expression has a solution.

Coverity Prevent SQS maps code, identifies and resolves defects. It automatically builds a “Software DNA” map to understand the code and break down languages such as C. It then translates the map into relevant formulas for defect detection, applies bit-accurate reasoning and runs an assertion-based SAT-solver, chief technology officer Ben Chelf explained.

According to a Coverity white paper, a SAT-solver “takes in a formula of variables under the operations and determines if there is a mapping of each individual variable to true and false, such that the entire formula evaluates to true.” This method is meant to flag defects and reduce false positives.

SAT was first used commercially in the electronic design automation industry for semiconductor chip design, Chelf explained. He added, “The hardware guys are way ahead of software.”

The discovered defects fit into the same workflows as those discovered by customers or QA teams, Chelf said. The classes of defects Prevent SQS detects are buffer overflows, dead code, integer overflows and string overflows.

Additional SAT solvers are slated for the next release of Coverity Prevent SQS.

Share this link: http://www.sdtimes.com/link/31147

News Briefs: October 15, 2008 Electric Cloud makes its product line compatible with Microsoft's HPC Server, RapidMind released add-ons for its RapidMind platform, and Fujitsu opens a subsidiary in North America.

Short Takes: February 15, 2010 The editors discuss a mobile White House, data vulnerability, the digs at Cambridge for Microsoft, and muzak for coders

Short Takes: January 15, 2010 The editors take on using video games as a springboard for programming and agile development's long history

Add comment

Name*
Email*
Country

Comment
Preview

Please hold here to Drag the window

Close [x]

Subscribe today and you'll receive 24 free issues of SD Times!

Dear Software Professional,

I’d like to invite you to subscribe to SD Times, the newspaper of the software development industry. The newspaper is free, and it will only take a moment to subscribe!

SD Times covers the fast-paced world of software and application development. The twice-monthly newspaper helps software architects, project leaders, analysts and development managers make the proper decisions about products, methodologies and practices that can affect their development teams and efforts.

Each year, we offer only a limited number of complimentary subscriptions to software development professionals!

It only takes moment to sign up. Don't delay, subscribe today!

Sincerely,

David Lyman
Publisher
SD Times

Coverity Takes Its SATs

Coverity has developed a new static code analysis engine

By David Worthington

Related Articles

Add comment