January 14, 2008

And now the Open Source version

from the previous post, it would be nice if we could get them to agree on the Security Rung, maybe NiST has a clue?

Can government-funded open source make Coverity obsolete?

Some government-funded open source offers an alternative bug-fixing approach to that used by Coverity, whom we wrote about yesterday.

The NIST, working with researchers at UT-Arlington, plan to release open source code for what they call automated “combinatorial” testing.

While Coverity’s software tests lines of code for common mistakes, like failing to close quotes or basic processes, the new code tests a variety of error states in combination. (A release on this is at Science Daily.)

Jan 14, 2008 10:27:16 AM | DOD, OpenSource

The comments to this entry are closed.

NEXT POST
Open Source Security Bugs Uncovered cool project, especially the part about "Security Rungs" - NIST has dropped the ball on certifying software for government use, good to see someone doing it: A US Department of...
PREVIOUS POST
Mark you Calender: OSS webinar On Feb 11, 2008, 3:00-4:30pm EST, David A. Wheeler will present on "Open Source Software and the DoD". It is open to the public, at no charge. This presentation is...

John Scott

powder monkey: NOUN: Slang, One who carries or sets explosives.

Berger Russell
The Typepad Team

Search

My Other Accounts

Recent Comments