Using Static Analysis to Find Bugs

Using Static Analysis to Find Bugs

Static analysis examines code in the absence of input data and without running the code. It can detect potential security violations (SQL injection), runtime errors (dereferencing a null pointer) and logical inconsistencies (a conditional test that can't possibly be true). Although a rich body...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:IEEE software 2008-09, Vol.25 (5), p.22-29
Hauptverfasser: Ayewah, N., Pugh, W., Hovemeyer, D., Morgenthaler, J.D., Penix, J.
Format: Artikel
Sprache:eng
Schlagworte:
Algorithms
Applied sciences
bug patterns
code quality
Computer bugs
Computer programs
Computer science
control theory
systems
Cybersecurity
Debugging
Defects
Educational institutions
Error analysis
Error detection
Exact sciences and technology
FindBugs
Freeware
Java
Mathematical analysis
Names
Open source software
Production
Programming
Running
Security
Software
software defects
Software development
Software engineering
Software quality
Software tools
static analysis
Testing
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Static analysis examines code in the absence of input data and without running the code. It can detect potential security violations (SQL injection), runtime errors (dereferencing a null pointer) and logical inconsistencies (a conditional test that can't possibly be true). Although a rich body of literature exists on algorithms and analytical frameworks used by such tools, reports describing experiences in industry are much harder to come by. The authors describe FindBugs, an open source static-analysis tool for Java, and experiences using it in production settings. FindBugs evaluates what kinds of defects can be effectively detected with relatively simple techniques and helps developers understand how to incorporate such tools into software development.
ISSN:0740-7459
1937-4194
DOI:10.1109/MS.2008.130