(Apologies if I already sent this to the group; I don't think I did.)
There's an interesting presentation at
http://www.iarpa.gov/stonesoup_Merced_DHSAWGbrief.pdf about a study
done by the US NSA (National Security Agency) of C and Java source
code analysis tools. They developed a synthetic test
The document properties suggests June 2009, and it's a shame that there
isn't much details as we are looking to evaluate 3 of the code analysis
tools for our development here.
CJC
-Original Message-
From: sc-l-boun...@securecoding.org
[mailto:sc-l-boun...@securecoding.org] On Behalf