U.S. CERT's Build Security in (BSI)

Build Security In (BSI) is a software assurance initiative of the U.S. Department of Homeland Security. At one point, they provided a set of C/C++ coding rules with a security focus. CodeSonar provides checks in support of most of these rules, and continues to provide those checks although the rules are no longer among the resources provided on the BSI website.

Relevant Warning Classes

The following PDF shows the CodeSonar warning classes that are associated with individual BSI rules and are matched with CodeSonar 7.1.

Was this article helpful?
0 out of 0 found this helpful

Comments

0 comments

Article is closed for comments.

Articles in this section

See more
GrammaTech Resource Library
Welcome to GrammaTech's resource library. Here you will find useful information about software development in the IoT era, where devices must not only function with impeccable quality and safety but also remain resilient to cyber attacks.
Shift Left Academy
Shift Left Academy is an educational resource to help implement a security first approach. Shift Left focuses on finding and preventing defects and security vulnerabilities early in the software development process
Blog
Posts by topic including static analysis, software assurance, and binary analysis