Klocwork Delivers Industry's Most Complete and Accurate Source Code Analysis Solution with New K7.1; Latest Version Used to Identify New Critical Defects Found in Open Source Projects, Including: Amanda, Samba and XMMS.BURLINGTON, Mass. -- Klocwork Inc., the proven leader of automated software for improving software security and quality, today shipped the latest release of its static analysis product suite, Klocwork K7.1. Klocwork K7.1 extends Klocwork's leadership in automated defect and vulnerability detection through the addition of dozens of new checkers checkers, game for two players, known in England as draughts. It is played on a square board, divided into 64 alternately colored—usually red and black or white and black—square spaces, identical with a chessboard. for C, C++ and Java source code analysis, in addition to enhanced capabilities that make it easier for K7.1 to be integrated into complex development environments. Additionally, as part of Klocwork's ongoing analysis of open source software, the company also announced the results of its analysis of the Amanda, Samba samba Ballroom dance of Brazilian origin, popularized in the U.S. and Europe in the 1940s. Danced to music in ⁴⁄₄ time with a syncopated rhythm, the dance is characterized by simple forward and backward steps and tilting, rocking body movements. , and XMMS XMMS X MultiMedia System (audio player for X-Windows) XMMS X Multi Media System XMMS Cross Platform Music Multiplexing System open source projects using K7.1. Klocwork analyzed the versions of each open source programs that were previously deemed defect-free by another source code analysis vendor, and identified hundreds of defects and vulnerabilities across the three projects. Klocwork has provided detailed information on these critical defects to the maintainers of Amanda, Samba and XMMS in a community-based effort to help improve the quality of the software while eliminating security vulnerabilities that hackers and criminals can exploit. "The Klocwork code analysis tool found many genuine bugs we had missed from prior static analysis. Its ongoing use will greatly improve and maintain the quality of future Samba releases," said Jeremy Allison Jeremy Allison is a computer programmer famous for his contributions to the free software community, notably to Samba, a re-implementation of SMB/CIFS networking protocol, released under the GNU General Public License. , co-author of Samba. "Many thanks to Klocwork for its support of the Samba project." Klocwork's award-winning static analysis suite enables cross-functional development teams to quickly identify software defects and vulnerabilities. With K7.1, users can find defects quickly with greater thoroughness and accuracy. The new version easily integrates with complex build systems and will automatically recognize any changes to a customer's build, ensuring the Klocwork integration is maintained. Klocwork has expanded the breadth of security vulnerability analysis In information operations, a systematic examination of an information system or product to determine the adequacy of security measures, identify security deficiencies, provide data from which to predict the effectiveness of proposed security measures, and confirm the adequacy of such by adding 44 new vulnerability checkers across Java, C, and C++. Klocwork K7.1 also features ARM Compiler and Java 1.5 support. "Klocwork's static analysis tools have been used by major enterprises to manage their software development - which typically entails millions of lines of code The statements and instructions that a programmer writes when creating a program. One line of this "source code" may generate one machine instruction or several depending on the programming language. A line of code in assembly language is typically turned into one machine instruction. - globally," said Ian Gordon Ian Gordon (born May 15, 1975 in North Battleford, Saskatchewan) is a Canadian ice hockey goaltender who currently plays for the Frankfurt Lions of the Deutsche Eishockey League. , vice president of product management at Klocwork. "Our customers are the leaders and innovators in their markets, and they understand the importance of finding and eliminating coding errors and security vulnerabilities early on in the development process. With K7.1's improved integration and extended support for Java and C++ development, our customers are going to see more accuracy results to help reduce the amount of time spent fixing coding errors and increase the amount of time spent developing innovative new features." Announced in February 2005, Klocwork's open source program is designed to enable open source organizations to leverage Klocwork's award-winning static analysis tool to remove critical defects and security vulnerabilities from software source code. The program - available at no cost to qualified open source organizations - involves analyzing source code, reporting the defects to the development team, and then re-analyzing the code to ensure that the defects have been fixed. Klocwork has already analyzed open source projects including Apache, Firefox, Berkeley DB (Berkeley DataBase) An open source database system that uses "key=value" pairs and is used to create indexes to tables and other data structures. For example, a record could hold a key (account number) and its value (row number), although a value can be any data structure , MySQL and PostgreSQL, working to make the software more secure and reduce critical defects. To have your open source project analyzed, contact opensource@klocwork.com. About Klocwork Klocwork's automated static analysis products detect and prevent software defects and security vulnerabilities. Our products provide entire development teams with tools to identify the root causes of software quality and security problems, track them throughout their software development process, ensure that they have been removed, and prevent them from reoccurring. Klocwork's patented technology was developed in 1996, and has delivered significant ROI (Return On Investment) The monetary benefits derived from having spent money on developing or revising a system. In the IT world, there are more ways to compute ROI than Carter has liver pills (and for those of you who never heard of that expression, it means a lot). to over 90 customers - many of them Fortune 500 accounts, known for having the most demanding software development environments in the world. Klocwork is a privately held company privately held company A firm whose shares are held within a relatively small circle of owners and are not traded publicly. with offices in Burlington, Mass., San Jose San Jose, city, United States San Jose (sănəzā`, săn hōzā`), city (1990 pop. 782,248), seat of Santa Clara co., W central Calif.; founded 1777, inc. 1850. , Calif., Chicago, Atlanta, Dallas, and Ottawa. Klocwork and the Klocwork logo are registered trademarks of Klocwork, Incorporated in the United States United States, officially United States of America, republic (2005 est. pop. 295,734,000), 3,539,227 sq mi (9,166,598 sq km), North America. The United States is the world's third largest country in population and the fourth largest country in area. and/or other countries. All other names are trademarks or registered trademarks of their respective companies. |
|
||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion