Coverity

Coverity
Coverity, Inc.
Type Private
Industry Software integrity
Founded November 2002
Headquarters San Francisco, CA
Key people CEO: Anthony Bettencourt
CTO: Andy Chou
HR: Carol MacKinlay
R&D: Andreas Kuehlmann
Products Coverity 5, Prevent, Thread Analyzer, Architecture Analyzer, Software Readiness Manager, Integrity Center
Employees 200+
Website coverity.com

Coverity is a software vendor based in San Francisco. It was incorporated in November 2002.

Contents

Products

Coverity Static Analysis is a static code analysis tool for C, C++, C# and Java source code. It is a commercial product which originated as the Stanford Checker,[1] which used abstract interpretation to identify defects in source code.

The most notable use of Prevent is under a United States Department of Homeland Security contract, in which it is used to examine over 150 open source applications for bugs.[2] On March 6, 2007 it was announced that over 6000 bugs across 53 projects found by the scan had been fixed.[3][4]


Coverity Dynamic Analyzer is a tool used to analyze Java source code. It was released in May 2008.[5] It observes code as it executes and identifies race conditions, deadlocks, and needless synchronization.

Other products are Coverity Architecture Analyzer, Coverity Build Analyzer and Integrity Center.

History

In early 2008, after spending more than four years as a self-funded, cash-positive startup, Coverity took in a $22 million investment from Benchmark Capital and Foundation Capital.

In June 2008, Coverity announced the acquisition of Solidware Technologies.[6] The technology gained from this acquisition became the foundation of Coverity Software Readiness Manager for Java.

In October 2008 Seth Hallem won the TR35 prize by Technology Review of MIT.[7]

In October 2009, Coverity earned a spot on Deloitte’s 2009 Technology Fast 500.[8] Revenues: 2004 $1.941 million, 2008 $21.918 million.

Competitors

  • Parasoft Analyzes Java (Jtest), JSP, C, C++ (C++test), .NET (C#, ASP.NET, VB.NET, etc.) using .TEST, WSDL, XML, HTML, CSS, JavaScript, VBScript/ASP, and configuration files for security, compliance, and defect prevention.
  • Klocwork Insight — Provides security vulnerability, defect detection, architectural and build-over-build trend analysis for C, C++, C#, Java.
  • Monoidics INFER — A sound tool for C/C++ based on Separation Logic.
  • Kalistick
  • PC-Lint A software analysis tool for C/C++.
  • PVS-Studio

Open Source Alternatives

  • Clang — A compiler that includes a static analyzer.
  • cppcheck — Open-source tool that checks for several types of errors, including use of STL.
  • cpplint Open source, automated checker to make sure a C++ file follows Google's C++ style.
  • Eclipse — An IDE that includes a static code analyzer (CODAN).
  • Frama-C — A static analysis framework for C

Business Model

The majority of the sales is done according to the LOC (lined of code) license [9] , the definition of "line of code" is listed on the Coverity web site [10]

References

  1. ^ Meta-Level Compilation project at Stanford University[dead link]
  2. ^ The open source results on scan.coverity.com
  3. ^ Open source one year results on scan.coverity.com
  4. ^ "LAMP lights the way in open-source security"ZDNet
  5. ^ "Coverity Introduces Thread Analyzer for Java". Theserverside.com. 2008-05-07. http://www.theserverside.com/discussions/thread.tss?thread_id=49316. Retrieved 2011-01-29. 
  6. ^ Krill, Paul (2008-06-30). "Coverity buys Solidware to boost code analysis". Infoworld.com. http://infoworld.com/article/08/06/30/Coverity-buys-Solidware-to-boost-code-analysis_1.html. Retrieved 2011-01-29. 
  7. ^ "TR35: Seth Hallem, 28". Technology Review. http://www.technologyreview.com/tr35/Profile.aspx?Cand=T&TRID=712. Retrieved 2011-01-29. 
  8. ^ "2009 Technology Fast 500 Ranking | Technology Fast 500 | Deloitte LLP". Deloitte.com. 2010-09-23. http://www.deloitte.com/view/en_US/us/Industries/Technology/technologyfast500/article/176ce72434554210VgnVCM200000bb42f00aRCRD.htm. Retrieved 2011-01-29. 
  9. ^ http://www.coverity.com/html/licensetype.html Coverity License Types
  10. ^ http://www.coverity.com/html/line_count_guidelines.html COVERITY'S LINE COUNT GUIDELINES

External links

Factory 1b.svg Companies portal
Portal-puzzle.svg Software Testing portal

Wikimedia Foundation. 2010.

Игры ⚽ Поможем написать курсовую

Look at other dictionaries:

  • Coverity — Prevent Coverity est un outil logiciel propriétaire utilisé pour l analyse statique de code source C, C++ et Java. Lien externe (en) Site de Coverity …   Wikipédia en Français

  • Coverity Prevent — Coverity Logo Prevent ist eine kommerzielle, proprietäre Software der US amerikanischen Software Firma Coverity, Inc. zur statischen Code Analyse von C , C++ , C# und Java Quelltext. Damit können unter anderem Wet …   Deutsch Wikipedia

  • Coverity Prevent — Coverity est un outil logiciel propriétaire utilisé pour l analyse statique de code source C, C++ et Java. Lien externe (en) Site de Coverity …   Wikipédia en Français

  • Open source software security — is the measure of assurance or guarantee in the freedom from danger and risk inherent to an open source software system. Contents 1 The debate 1.1 Benefits of open source security 1.2 Drawbacks of open source security …   Wikipedia

  • OpenPAM — Original author(s) Dag Erling Smørgrav Developer(s) NAI Labs Stable release Hydrangea / December 21, 2007; 3 years ago (2007 12 21) …   Wikipedia

  • List of tools for static code analysis — This is a list of significant tools for static code analysis.Historical products* Lint the original static code analyzer of C code.Open source or Noncommercial products .NET (C#, VB.NET and all .NET compatible languages) *… …   Wikipedia

  • Zlib — infobox software name = zlib latest release version = 1.2.3 latest release date = 2005 07 18 programming language = C operating system = cross platform genre = data compression license = zlib license website = [http://zlib.net/ zlib.net] zlib is… …   Wikipedia

  • Abstract interpretation — In computer science, abstract interpretation is a theory of sound approximation of the semantics of computer programs, based on monotonic functions over ordered sets, especially lattices. It can be viewed as a partial execution of a computer… …   Wikipedia

  • Features of Mozilla Firefox — The features of Mozilla Firefox distinguish it from other web browsers such as Internet Explorer. It lacks many features found in other browsers, in an effort to combat interface bloat and to allow the browser to be shipped as a small, pared down …   Wikipedia

  • List of build automation software — Build automation involves scripting or automating the process of compiling computer source code into binary code. Below is a list of notable tools associated with the build automation process. Contents 1 Make based tools 2 Non Make based tools 3… …   Wikipedia

Share the article and excerpts

Direct link
Do a right-click on the link above
and select “Copy Link”