GrammaTech is pleased to offer academic licenses of CodeSonar, free of charge. Some recent academic projects using Codesonar are listed below.
IT University of Copenhagen
Course: Code Analysis
In this course, students receive background on code analysis and technology, in addition to rolling up their sleeves and trying out different tools in small projects. For this, they use CodeSonar as an example of a successful industry tool.
National University of Singapore
Course: Software Security
Research: Program Slicing Android Linux Kernel for Wakelock Bugs
Modern smartphones adopt an aggressive sleeping policy; they can go to sleep in the middle of some time-critical code sections if wakelocks are not properly manipulated by the programmer. Researchers at Purdue University are applying static analysis to the Android Linux kernel to look for such wakelock bugs.
San Jose State University
Course: Software Security Technologies
This course provides the fundamental concepts, methods, and tools used to design and implement software security technologies for constructing trustworthy centralized, distributed, or enterprise-wide software systems.
University of Central Florida
Course: Secure Software Development and Assurance
This course includes: threat modeling; secure code life-cycle; buffer overflows, race conditions, and format string problems; inputs and clients.
University of Illinois at Chicago
The broad goal is to minimize run-time overheads without sacrificing protection. CodeSonar is being used to detect where use-after-free bugs occur, in order to more precisely identify where run-time checks are needed and where they are not. Codesonar will be used to analyze large and widely-used programs such as Firefox and other large programs with millions of lines of code, to detect where bugs occur, and then remove unnecessary checks.
Georgia Southern University
Course: Software Testing and QA
Essential concepts and technology for software systems quality assurance and testing – the course covers software testing and the quality assurance body of knowledge including theory, models and methods, as well as contemporary standards and tools.
Universita di Salerno
Course: Security and Safety
Static and Dynamic Analysis. Formal Verification of Correctness of Programs
University of New South Wales
University of Southampton
Program analysis and verification with a particular emphasis on concurrent programs &ndash building prototype tools to discover bugs in concurrent C programs.
University of Texas at San Antonio
Research is focused on more advanced code searching techniques that consider features from system dependence graphs. Current experimenting is with a novel hybrid code indexing algorithm that considers both graph and textual features.