Source code analysis – beyond the basics

Gwyn Fisher (Klocwork, Inc.)

Test And Performance · Short Talk

Wednesday, 14:40, 10 minutes | Room 209/210 | Download in iCal Format

7
·
8
·
9
·
10
·
11
·
12
·
13
·
14
·
15
·
16
·
17
·
18
·
19

Gwyn Fisher

As developers we are constantly honing our skills, continuing to learn and evolve into experts of our chosen craft but even the best developers make mistakes, and unfortunately they happen all the time. Whether you’re writing an embedded software system or a high-profile website, there’s no need to put up with programming bugs in code anymore. Companies have invested in a myriad of different quality process improvements such as code reviews, unit testing, and black-box testing techniques, yet critical programming errors continue to leak into the wild.

Source code analysis is growing in popularity amongst developers as another solution to creating bug-free code. We all know and use source analysis tools like those included in TPTP, or standalone tools like PMD and FindBugs. They’re free, they’re well maintained, and they fulfill a useful function in the software process. So what differentiates commercial tools in the space, and why should you think about using them?

Presented by Gwyn Fisher, CTO of Klocwork, attendees will learn the difference between the types of bugs that can be found by the prevalent open source and commercial tools, what that means for a typical development organization, and how such tools increase in value through usage by a whole team. Focusing on a technical explanation of AST validation, control flow and data flow validation, and advanced techniques such as symbolic evaluation and infeasible path reduction, the session will equip listeners to take control of the bugs in their code and to move their development skills to the next level.

Gwyn Fisher, CTO of Klocwork Gwyn is responsible for guiding the company’s technical direction and strategy. With nearly 20 years of global technology experience, Gwyn brings a valuable combination of vision, experience, and direct insight into the developer perspective. With a background in formal grammars and computational linguistics, Gwyn has spent much of his career working in the search and natural language domains, holding senior executive positions with companies like Hummingbird, Fulcrum Technologies, PC DOCS and LumaPath. At Klocwork, Gwyn has returned to his original passion, compiler theory, and is leveraging his experience and knowledge of the developer mindset to move the practical domain of static analysis to the next level.

Floor Plan

Gold sponsors

BEA logo

IBM logo

Wind River logo

Replay Solutions logo

JBoss logo

SOPERA logo

Cloudsmith logo

BIRT Exchange logo

Skyway Software logo

Oracle

BlackBerry logo

AMD logo

Silver sponsors

Sybase

Google

Genuitec

Instantiations

Teamprise

Telelogic

Innoopract

Business Objects

LynuxWorks logo

Hardware sponsor

AMD logo

Media sponsors

Extension Media

Methods and Tools

ACM

Addison-Wesley logo

SD Times logo

Open Systems Publishing

Software Test & Performance logo

SDForum

Be a Sponsor