June 24, 2008

Paul Anderson in Embedded Intel Solutions

"Analyze x86 Executables to Improve Software Quality" by Paul Anderson was published today in Embedded Intel Solutions. An excerpt appears below, with a link to the full article.

Analyze x86 Executables to Improve Software Quality

By Paul Anderson

[...]

The disadvantage of source-only analyses is that it's very rare that all of the source code for an application is available. Almost all applications link with third-party libraries including operating- system libraries. A source-code analysis tool is blind to any non-source components.[...] Even in cases where the source code is available, it's helpful to analyze the object code instead. After all, computers don't execute source code. They execute machine code. There may be subtle yet important differences between the apparent semantics of source code and the semantics of the machine code to which it's compiled. This is known as the What You See Is Not What You eXecute (WYSINWYX) effect [1].

[...]

See the article on the Embedded Intel Solutions website

About Grammatech
GrammaTech's static-analysis tools are used worldwide by startups, Fortune 500 companies, educational institutions, and government agencies. The staff includes ten researchers with PhDs in programming languages and program analysis. The company has offices in Ithaca, New York, and San Jose, California. More information about GrammaTech can be found at www.grammatech.com.

GrammaTech, Inc.
317 N. Aurora St.
Ithaca, NY 14850 USA
phone: 607-273-7340
fax: 607-273-8752
e-mail: info@grammatech.com


Free Trial | Products | Customers | Support | News | Jobs | About Us         © 2007-2008, GrammaTech, Inc. All rights reserved.