Compliance with ISO 26262

CodeSonar^®

GrammaTech's CodeSonar is the most powerful solution for software assurance.

Advanced static analysis at your fingertips.

Learn More Get a Free Trial

Address Cyber-Security

Eliminate Security Vulnerabilities

Leverage CodeSonar's Static Application Security Testing (SAST) features to remove critical coding vulnerabilities.

Featured Whitepaper:

A Four-Step Guide to Security Assurance for IoT Devices

» Read more

Application Security Hardening

Software security is facing new challenges in all industries.

How can you secure your software, be it new software, existing software, open source, and/or proprietary software?

Third-Party Audits
Security Hardening Techniques
Software Monitoring Technologies

Learn more »

Autonomic Computing

Autonomic computing technologies enable systems to self-monitor and self-protect against cyber attacks.

Systems no longer need human attention to:

Remove vulnerabilities
Detect attacks
Defend against attacks
Respond to attacks

Learn more »

Products

Deploy CodeSonar^® on your software:

Increase code quality
Increase confidence
Reduce risk

Evolve with IoT

Get the Most Powerful SAST Solution

CodeSonar finds 3-5 times more defects than other static analysis solutions.

Learn More Get a Free Trial

Featured Customer Story

NASA relies on GrammaTech static analysis.

Leverage our experts

GrammaTech Services

Our team of software scientists can help you transform your team.

Why Partner with GrammaTech?

GrammaTech is a recognized leader in software assurance, leveraging decades of research with academic and government groups.

Learn More

Who uses GrammaTech?

Trusted Industry Leaders

GrammaTech's technologies are used worldwide by organizations spanning a myriad of sectors.

About GrammaTech

The leading developer of software-assurance tools and advanced cyber-security solutions.

Learn More

Meet the Team

Software Innovators

Our executive team of software scientists and business leaders are focused on solving the toughest issues of software analysis and transformation.

Management Team

Interested in an exciting career in software research and development?

View career opportunities

Compliance with ISO 26262

ISO 26262, Road Vehicles — Functional safety adapts IEC 61508 to road vehicle E/E systems, including software components (safety-related and otherwise).

While ISO 26262 does not specifically mandate a specific static analysis phase, incorporating static analysis can help simplify and improve the design, implementation, and testing stages of software development.

Simplifying ISO 26262 Compliance with CodeSonar

Sophisticated analyses in CodeSonar provide multiple points of leverage for supporting software development and improving the quality of the resulting system. CodeSonar’s extensive reporting and record-keeping mechanisms also assist with the documentation obligations imposed by the standard.

Several major themes cut across different parts of ISO 26262, that can be addressed by using CodeSonar. The major themes are outlined below.

ISO 26262 Themes Addressed by CodeSonar

Given the increased use of software in mission-critical and safety-critical applications (i.e., crash avoidance systems in the latest generation of automobiles, remote SCADA system updates, and more), it’s critical that software follows standards that specify how developers should write code to increase its readability and reliability. CodeSonar automates this task by delivering checkers for important coding standards:

Automotive Safety Integrity Level (ASIL) Management

ASIL Tracking
ASIL Decomposition
ASIL Coexistence

Control and Data Flow

Partitioning
Coexistence of Elements
Order of Execution
Supporting Safety Analyses

Architectural/Design/Coding Principles and Properties

Avoiding Unnecessary Complexity
Maintainability
Verifiability
Coding Guidelines
Robustness

Reuse

Configuration and Calibration

Configuration Data
Calibration Data

Test Support

Fault Injection
Resource Usage
Reachability and Test Coverage

Verification Support

Compliance with Coding Guidelines
Compatibility with Target Hardware
Correctness and Consistency

Documentation

Traceability

Change Management

Impact analysis
Traceability

Configuration Management

Baseline Management
Problem Reporting and Tracking
Change Control
Change Review

CodeSonar helps you comply with coding standards:

MISRA C: 2004, 2012
ISO 26262/IEC 61508
DO 178B
DISA STIG
FDA
MITRE's CWE (Common Weakness Enumeration)
Power of 10
JPL
U.S. CERT's Build Security In (BSI)

Compliance with Coding Standards