Sponsor: Klocwork

Why Static Code Analysis? Static code analysis, or SCA, can be described as the analysis of whole-program source code without the execution of that program. A number of interpretations and even misconceptions about this technology and how it impacts or benefits you, the developer, have emerged over time. You may have heard some of them yourself.

To help tell the right story, we put this paper together to dispel some of the ‘myths’ about SCA, myths that serve mostly to distort the true value static analysis can bring to you and your software development lifecycle (SDLC).

Today's high performance applications demand clean, efficient and secure code. Regardless of whether you and your team develop in C/C++, Java or C#, your code needs to be both reliable and secure. In years past, most development teams worried about the cleanliness of their code, but they rarely worried about code security. And if they did look out for security, it was often not during the development process. Learn how software development teams are turning analysis and code review into a holistic process that combines code verification and efficiency with security and other processes into one, streamlined system. Learn how this streamlined software development process can help boost the security and reliability of your code while making the work of development easier and more efficient.