NOTE! This site uses cookies and similar technologies.

If you not change browser settings, you agree to it. Learn more

I understand

Learn more about cookies at :

April 7, 2014 | Frama-C gets high marks for cyber trust in the United States

Standards and Technology, CEA LIST’s Frama-C C-language program analysis software is today the only software in the world capable of finding all weaknesses in the most dangerous classes of weaknesses identified for sensitive software.

201411 10The results were obtained in a far-reaching NIST evaluation of static analysis tools shortly after the discovery of the Heartbleed bug, a severe vulnerability in OpenSSL, that could potentially affect 70% of the global internet. A US-based expert deemed that Coverity, the most commonly-used verification tool, could not detect Heartbleed, but that Frama-C’s formal code-analysis method would be effective at spotting the bug.

TrustInSoft, the CEA LIST spinoff created to commercialize Frama-C, will benefit directly from this situation. The company has developed a certification kit for the PolarSSL communications application, which offers a totally secure alternative to OpenSSL.

Learn more at: