Ensuring Software Quality, Safety, and Security by Sound Static Analysis

You will learn how static analysis powered by Abstract Interpretation can detect critical issues like memory safety violations and runtime errors in embedded C/C++ code. We’ll cover how these techniques support compliance with safety and security standards such as DO-178C, ISO 26262, and ISO 21434, and how to enforce coding guidelines like MISRA, CERT, and CWE.

Topics of Discussion

* Static program analysis by Abstract Interpretation - How it works

* Contributions to DO-178C, ISO 26262, ISO 21434, and other safety/security norms

* Memory safety and [Unforgivable Defects]

* Checking coding guidelines (MISRA C/C++, CERT , CWE, ...)

* Proving the Absence of Runtime Errors for C/C++

* Freedom of Interference and Signal Flow Analysis

* Stack Usage Analysis

* Worst-Case Execution Time Analysis

* Integration into CI/CD pipeline workflows

* Automatic Tool Qualification to Safety Norms