JCP 2018 Vol.13(10): 1136-1144 ISSN: 1796-203X
doi: 10.17706/jcp.13.10.1136-1144
doi: 10.17706/jcp.13.10.1136-1144
Comparative Assessment of Static Analysis Tools for Software Vulnerability
Peter Miele, Mohammed Alquwaisuwaisuwais uwaisem, Dae-Kyoo Kim
Department of Computer Science and Engineering, Oakland University, Rochester, MI, 48309, USA.
Abstract—Software security is a continuous and growing field within software development, maintenance, and operation. Vulnerabilities in software provide significant risk to the operation of software. Software tools have been developed over time to assist in identification and rectification of software vulnerabilities through static analysis of source code. Static analysis tools provide a software development team a means to rapidly review their project for the vulnerabilities that exist, but unknown to the team. In this paper, we present comparative assessment of three commonly used static analysis tools for software vulnerability using open source software for the purpose to aid software developers in choosing a suitable tool for their needs.
Index Terms—Software, static analysis, vulnerability.
Abstract—Software security is a continuous and growing field within software development, maintenance, and operation. Vulnerabilities in software provide significant risk to the operation of software. Software tools have been developed over time to assist in identification and rectification of software vulnerabilities through static analysis of source code. Static analysis tools provide a software development team a means to rapidly review their project for the vulnerabilities that exist, but unknown to the team. In this paper, we present comparative assessment of three commonly used static analysis tools for software vulnerability using open source software for the purpose to aid software developers in choosing a suitable tool for their needs.
Index Terms—Software, static analysis, vulnerability.
Cite: Peter Miele, Mohammed Alquwaisuwaisuwais uwaisem, Dae-Kyoo Kim, "Comparative Assessment of Static Analysis Tools for Software Vulnerability," Journal of Computers vol. 13, no. 10, pp. 1136-1144, 2018.
PREVIOUS PAPER
First page
General Information
ISSN: 1796-203X
Abbreviated Title: J.Comput.
Frequency: Bimonthly
Abbreviated Title: J.Comput.
Frequency: Bimonthly
Editor-in-Chief: Prof. Liansheng Tan
Executive Editor: Ms. Nina Lee
Abstracting/ Indexing: DBLP, EBSCO, ProQuest, INSPEC, ULRICH's Periodicals Directory, WorldCat,etc
E-mail: jcp@iap.org
-
Nov 14, 2019 News!
Vol 14, No 11 has been published with online version [Click]
-
Mar 20, 2020 News!
Vol 15, No 2 has been published with online version [Click]
-
Dec 16, 2019 News!
Vol 14, No 12 has been published with online version [Click]
-
Sep 16, 2019 News!
Vol 14, No 9 has been published with online version [Click]
-
Aug 16, 2019 News!
Vol 14, No 8 has been published with online version [Click]
- Read more>>