Learn
Check out all of GrammaTech’s resources and stay informed
GrammaTalk
Thought Leadership, Industry News and Product Updates
GrammaTALK is our hub for industry news, product updates and thought leadership to help help navigate the world of application security.
view all postsIn the News
The Latest at GrammaTech
From forward-thinking research to industry news and more — the GrammaTech team has a breadth and depth of knowledge that we are excited to share
View all postsVideos
Watch GrammaTech videos to learn more about our Products, Solutions, and Industry Trends.
White Papers
Read GrammaTech reports and technical papers to learn more about our Products, Solutions, and Industry Trends.
Using a SBOM to Make Better Software Security Decisions
Read Moredownload pdf Software supply chain attacks are on the rise. Many of the high-profile cybersecurity news stories such the SolarWinds attack and the Apache Log4j vulnerability tell a tale of attackers exploiting vulnerabilities and weaknesses in the software supply chain. The mode of operation can range from fairly simple exploits of known vulnerabilities like Log4Shell to very…
Managing Software Supply Chain Risk in Medical Devices
Read MoreDownload PDF Modern medical devices are gaining complexity, and as connectivity to the internet, cloud, and outside world increases, so does the security challenge. Further, medical devices for home use are increasing exponentially, so devices must withstand a non-clinical environment while communicating on insecure home networks. And with medical devices, security risks are also safety risks, which increases development costs and liability.…
How to Avoid Common Pitfalls in MISRA Compliance
Read Moredownload pdf BACKGROUND In embedded development, C remains an extremely popular choice of language. Although other languages, such as Ada, C++, and Java are used in some circumstances, and model-driven development is becoming more popular in specific domains, about 50% of the code running on embedded systems is still hand-written C. C is a great…
Exida – Improving Software Security & Comply with IEC 62443
Read MoreUsing GrammaTech CodeSentry and CodeSonar. download pdf 1 Purpose and Scope In order to develop secure code free of vulnerabilities, suppliers are increasingly following a secure development lifecycle to achieve these goals. The IEC 62443-4-1 standard (Security for industrial automation and control systems –Part 4-1: Secure product development lifecycle requirements) defines specific requirements for using…
Product Sheets
Learn more about our products and technologies.