Re: [SystemSafety] Static Analysis

From: Roberto Bagnara < >
Date: Wed, 26 Feb 2014 07:54:36 +0100

On 02/25/14 21:40, Peter Bernard Ladkin wrote:
> Apparently Apple doesn't perform any kind of static analysis on critical code. This in its SSL certificate-checking library.
> As the article points out, a simple automated reachability analysis would have highlighted the anomaly. Note that it has been out there in the open for a while - the code is open source.
> It`'s hard to believe. Does stuff like this happen in the safety-critical area to leading companies still?

I have a hard time to believe that Apple doesn't do any kind of static analysis on that code (*). In any case, we are nowhere near where we ought to be in 21st century concerning the practice of software verification and validation. This unfortunately concerns safety-critical code and leading companies as well: Bookout-vs-Toyota is kind of extreme but not at all an isolated case. Perhaps things will change now that lawyers have learnt how to directly attack poor-quality code.

> Very nice piece of tech reporting from the Guardian, though.


(*) Apple is investing significant resources in the clang/llvm compiler

     and this contains a reasonable static analyzer (though not fit for
     safety-critical development).

      Prof. Roberto Bagnara

Applied Formal Methods Laboratory - University of Parma, Italy mailto:bagnara_at_xxxxxx

                               BUGSENG srl -
The System Safety Mailing List
systemsafety_at_xxxxxx Received on Wed Feb 26 2014 - 07:54:48 CET

This archive was generated by hypermail 2.3.0 : Tue Jun 04 2019 - 21:17:06 CEST