Security

5 articles

The Role of Tools in Improving Embedded Software Security / Part 3: Mapping the Tools to Activities

By Bill Graham In the previous posts in this series, Part 1: Automation is the Key and Part 2: Security Improvement and the Software Development Lifecycle, I talked about the connection between the typical embedded device development process and the 5+1 improvement framework for embedded security.  Figure 1 is an illustration of this connection (and discussed in more detail in…

Test Management 5.0: Extending testing to Android, security and beyond

By Ido Sarig Today we announced the latest  version of Wind River Test Management, which takes software test optimization to the next level.  With this release, we have unified our testing solutions for VxWorks, Linux and Android under one umbrella. All the capabilities of Wind River Framework for Automated Software Testing (FAST), our solution for Android compatibility testing, have now been…

Using Static Analysis to Improve Product Quality, Earlier and Cheaper

By Bill Graham Fixing bugs is expensive. Fixing bugs is more expensive the later you leave them, in fact, its been shown to cost a magnitude higher with each major phase of development. The famous defect cost chart from Capers Jones shows the cost of a bug going from $25 at the coding phase to $16,000 in development.  Not only that,…

Testing for Security

By Ido Sarig Last summer was a watershed event for security-consciousness in the embedded systems world: Stuxnet, a highly sophisticated worm exploited no fewer than 4 zero day vulnerabilities in Windows in order to attack a specific Siemens PLC and its associated SCADA system. The target was reportedly the Iranian nuclear facilities at Natanz, where uranium-enrichment centrifuges were taken out of…

Being Helpful or Simply Correct?

By Jakob Engblom The other day, I spent some time getting a new operating system up on one of our Simics virtual platforms. The platform is stable, the hardware is shipping and it is being used with the very software I was setting up. However, as the operating system was booting, I got quite a lot of warnings from Simics about incorrect…