Source Code Analysis Laboratory (SCALe) for Energy ... - CERT

More documents

Recommendations

Info

Figure 3: Source Code Analysis Labboratory The SCALe laboratory environmeent consists of two servers running VMware ESX hypervvisors. These are supported by a large stoorage area network (SAN) with redundant storage and baackup capabilities. The two ESX serverss support a collection of virtual machines (VMs) that cann be configured to support analysis in variious environments, such as Windows XP and Linux. A VVMware vCenter Server provides control oover the virtual environment. The VMs are connected by a segmmented-off network and to a file server running Samba and NFS. The Windows VMs can be remotely accessed from within the CERT network by using Reemote Desktop Protocol (RDP) and the LLinux VMs by using Secure Shell (SSH). The machines are oth- erwise disconnected from the inteernet. Source code being analyzed is coppied onto the file server, where it is available to all the annalysis VMs. Analyzers and other tools aare installed through a similar process or by using vCenteer. 2.3 Conformance Testing Proocess Figure 4 illustrates the SCALe coonformance testing process. The client provides the softwware con- taining the code for analysis. Thiss software must build properly in its build environment, ssuch as Microsoft Windows/Visual Studioo or Linux/GCC. It may produce compiler warnings but may not produce fatal errors. If the target operational environment is different than the build envirronment, the target environment must be fuully specified, including all implementation-defined behaaviors. CMU/SEI-2010-TTR-021 | 10
Figure 4: SCALe Conformance Tessting Process 2.4 The Use of Analyzers in CConformance Testing The client code is analyzed using multiple analyzers. information on various types of an duces a set of flagged nonconform 6 Section 1.5 contains additional backkground nalysis. Each analyzer accepts the client code as input annd pro- mities. Dynamic analysis tools must be aable to run the program, which requires not only the correect execution environment but also suittable representative inputs. Additionally, the execution ennviron ment may include custom or speccial-purpose hardware, test rigs, and other equipment. Thhese hur- dles can make dynamic analysis ttools challenging. The final report provided to the client documents the degree to which dyynamic analysis was applied during conformance testingg. Also, an analyst may manually reeview the source code, using both structured and unstructtured techniques, and record any violatiions of secure coding rules discovered. However, manuaal code scanning costs considerably moree than automated analysis, and the results depend more on the skill and tenacity of the analyst. 6 The C Secure Coding Rules Study y Group defines an analyzer to be the mechanism that diagnoses cooding flaws in software programs. This may incclude static analysis tools, tools within a compiler suite, and code reeviewers. CMU/SEI-2010-TTR-021 | 11
Page 1 and 2: Source Code Analysis Laboratory (SC
Page 3 and 4: Table of Contents Acknowledgments v
Page 5 and 6: List of Figures Figure 1: SCALe Pro
Page 7 and 8: List of Tables Table 1: True Positi
Page 9 and 10: Acknowledgments We would like to ac
Page 11 and 12: Abstract The Source Code Analysis L
Page 13 and 14: 1 Introduction A key mission of the
Page 15 and 16: 1. Client contacts CERT. The prooce
Page 17 and 18: • The CERT C++ Secure Coding Stan
Page 19 and 20: • A floating-point value with all
Page 21: 2 Conformance Testing This section
Page 25 and 26: • De-duplication of crashing test
Page 27 and 28: Handbook of Applied Acceptance Samp
Page 29 and 30: 2.6 Tracking Diagnostics Across Cod
Page 31 and 32: _Pragma(push: tool_a_maybe_foo, dis
Page 33 and 34: processes. A system of review will
Page 35 and 36: diagnostic codes mapped to a repres
Page 37 and 38: ID Rule Group AA AC 1 AC 2 AC 3 AC
Page 39 and 40: lack of confidence with C++. Howeve
Page 41 and 42: 3.1.1 Impartiality CERT resides wit
Page 43 and 44: 4. CERT will evaluate any deviation
Page 45 and 46: Table 6: Flagged Nonconformities, E
Page 47 and 48: Table 8: Flagged Nonconformities, E
Page 49 and 50: 4 Related Efforts This section desc
Page 51 and 52: 5 Future Work and Summary 5.1 Futur
Page 53 and 54: Bibliography URLs are valid as of t
Page 55 and 56: [MISRA 2004] Motor Industry Softwar
Page 57: REPORT DOCUMENTATION PAGE Form Appr

Source Code Analysis Laboratory (SCALe) for Energy ... - CERT

Create successful ePaper yourself

Delete template?

Save as template?