Cimdata Logo

Industry Summary Articles

Wednesday, July 13, 2016

Synopsys Releases Coverity 8.5 Static Analysis Tool

Highlights:

  • Introduces Coverity static analysis capabilities for Ruby and node.js web applications, as well as Android mobile applications
  • Expands Coverity security analysis to mitigate a wider range of security vulnerabilities
  • Adds full support for MISRA C 2012 coding guidelines used in automotive, medical device and other safety-critical industries
  • Enhances development lifecycle integration and reporting, including consolidated reporting functionality across several tools in the Software Integrity Platform
  • Adds localization in simplified Chinese to Coverity user interface and documentation

Synopsys, Inc. today announced the version 8.5 release of Coverity®, the company's industry-leading static analysis tool and one of the core components of its Software Integrity Platform. Coverity is an automated software testing tool that analyzes source code to detect critical security vulnerabilities and defects early in the software development lifecycle.

Coverity and the other tools in Synopsys' Software Integrity Platform are used to facilitate "software signoff," an integrated development and testing methodology that aims to ensure software quality and security. Pioneered by Synopsys to emulate the signoff concept used in integrated circuit (IC) design, software signoff involves a series of automated testing cycles at critical points throughout the software development lifecycle and software supply chain.

The Coverity 8.5 release includes several important updates to enhance its security analysis and reporting capabilities and extend its utility to a broader audience, including organizations developing web and mobile applications and software systems for vehicles and other safety-critical systems.

Enterprise Application Security Testing for Web Apps, Mobile Apps and More

Coverity 8.5 strengthens Synopsys' offering to the enterprise market by adding analysis capabilities for Ruby and node.js, two increasingly popular programming languages used to develop web applications. The release also introduces foundational security analysis for Android mobile applications to address the growing concern around enterprise mobile security. In addition, this release enhances Coverity's security-focused analysis for several supported programming languages to detect a wider range of vulnerabilities, including the OWASP Top 10, CWE/SANS Top 25 and more.

Enabling Safety and Security in Automotive Software

Coverity 8.5 also strengthens Synopsys' offering for the automotive and other safety-critical industries by adding full coverage for MISRA C 2012, a widely adopted set of software development guidelines for facilitating code security and safety. This follows Synopsys' May announcement of Coverity's ISO 26262 certification and further advances the company's efforts to address vehicle security and safety in the midst of emerging industry trends such as connected cars and autonomous driving.

For more information, please refer to the Coverity product brief for MISRA C 2012 compliance. 

"Software vulnerabilities pose a serious threat to businesses across all industries, and whether you're developing web apps for personal banking or an embedded system for a car, addressing bugs early in the development lifecycle with automated tools like Coverity is critical," said Andreas Kuehlmann, senior vice president and general manager of Synopsys' Software Integrity Group. "The Coverity 8.5 release increases the breadth and depth of the tool's analysis capabilities to better serve the needs of enterprise application security market, as well as safety-critical industries like automotive that are facing constantly evolving security threats."

The latest release also brings enhanced integration and reporting features to Coverity users, including updates and support for the latest IDE (integrated development environment) releases, and the introduction of a new "Software Integrity Report," a dashboard-level report that aggregates software issues detected by Coverity and other tools in the Software Integrity Platform, including the Defensics® fuzz testing tool and Protecode™ Supply Chain software composition analysis tool.

To support its growing customer base and expand its software integrity business in Asia Pacific, Synopsys is now offering a localized version of Coverity 8.5 in simplified Chinese, including a localized user interface, reporting, IDE plugins and documentation.

To view the original press release, please click here.

Search for Synopsys on CIMdata.com

r
ipad background image

Featured Cimdata Reports

ipadcontent
PLM-Enabled Digital Transformation Benefits Appraisal Guide

The Guide is designed to help potential PLM users evaluate the applicability and payoffs of PLM in their enterprise, and to help existing users of PLM monitor the impact it is having on their product programs.

ipadcontent
PLM Market Analysis Reports

The PLM MAR Series provides detailed information and in-depth analysis on the worldwide PLM market. It contains analyses of major trends and issues, leading PLM providers, revenue analyses for geographical regions and industry sectors, and historical and projected data on market growth.

ipadcontent
PLM Market Analysis Country Reports

These reports offer country-specific analyses of the PLM market. Their focus is on PLM investment and use in industrial markets. Reports cover Brazil, France, Germany, India, Italy, Japan, Russia, South Korea, the United Kingdom, and the United States.

ipadcontent
Simulation & Analysis Market Analysis Report

This report presents CIMdata’s overview of the global simulation and analysis market, one of the fastest growing segments of the overall product lifecycle management market, including profiles of the leading S&A firms.

ipadcontent
CAM Market Analysis Report

This report presents CIMdata’s overview of the worldwide CAM software and services market. It also includes a discussion on the trends in the CAM industry and updates on the top CAM solution providers.