Test Management

9 articles

Test Management 5.0: Extending testing to Android, security and beyond

By Ido Sarig Today we announced the latest  version of Wind River Test Management, which takes software test optimization to the next level.  With this release, we have unified our testing solutions for VxWorks, Linux and Android under one umbrella. All the capabilities of Wind River Framework for Automated Software Testing (FAST), our solution for Android compatibility testing, have now been…

Detecting security problems – using static analysis to catch them early and less expensively

By Bill Graham In my previous post I discussed the potential benefits in quality and costs that static analysis brings to software development. In addition to common coding errors, many of the bugs found by static analysis are potential security defects as well.  Buffer overflow, OS command injection, unrestricted string format and integer overflows are among the top 25 most dangerous security coding defects…

Using Static Analysis to Improve Product Quality, Earlier and Cheaper

By Bill Graham Fixing bugs is expensive. Fixing bugs is more expensive the later you leave them, in fact, its been shown to cost a magnitude higher with each major phase of development. The famous defect cost chart from Capers Jones shows the cost of a bug going from $25 at the coding phase to $16,000 in development.  Not only that,…

Improving Embedded Security: Proper Runtime Selection

By Bill Graham Selection of secure components for an embedded system is key to a secure system. Leveraging a secure RTOS, middleware, virtualization and tools significantly reduces the effort and development costs. Moreover, there are additional benefits from using commercial-off-the-shelf (COTS) software components over Roll Your Own (RYO) code or self-ported and maintained open source code. Some of the COTS…

Testing for Security

By Ido Sarig Last summer was a watershed event for security-consciousness in the embedded systems world: Stuxnet, a highly sophisticated worm exploited no fewer than 4 zero day vulnerabilities in Windows in order to attack a specific Siemens PLC and its associated SCADA system. The target was reportedly the Iranian nuclear facilities at Natanz, where uranium-enrichment centrifuges were taken out of…

Wind River Named “Transformational”

By Ido Sarig Voke, Inc. has just released its annual “Market Mover Array Report on Application Lifecycle Management (ALM)," and we’re very pleased to see that Wind River’s Device Lifecycle Management solutions were favorably reviewed, and ranked as  “Transformational” - the highest category, reserved for vendors that are changing the tone and direction of the market!  Continue Reading>>

When embedded software testing is a life or death issue

By Ido Sarig When I was in high school, there was a popular TV show called “Moral Dilemma” that aired in my native country. It featured a panel of professionals such asdoctors and lawyers who discussed “life or death” issues related to their daily work:  Would you represent and defend a client charged with murder after he confided in you…

Test Automation Meets Simulation

By Paul Henderson I'm seeing increasing interest from many companies in using simulation environments with test automation systems to accelerate the testing process. Specifically, putting Wind River Test Management together with Wind River Simics is getting creative juices flowing in industry thought leaders. Why? Well, development teams have started to realize the benefits of simulation systems for speeding and validating system…

Wind River and IBM Attack Software Quality

By Paul Henderson As I've mentioned before, we've been working with IBM Rational for some time around quality management automation. Both companies see the skyrocketing software content and architectural complexity in the embedded device market as creating a tipping point where companies will not be able to continue with business as usual. Product development teams will need to take a…