The CERT C coding rules aim at making safety critical systems more secure by flagging security issues in the code. This enables developers to grind away inherently insecure ways of coding C and C++.
Axivion´s CERT C check covers a lot of decidable rules that do not need human interpretation of the rules.
Our CERT C checks seamlessly integrate into IDEs and CI environments allowing for easy integration into your processes ranging from local checks up to full-fledged automated CI checks with the very same configuration and the very same results.
Using the CERT C coding rules
Use the severity of rules and rule groups to prioritize your work. Add justifications if deviations in the code are needed. Our unparalleled delta check keeps developers more focused on their daily job of creating safe code. During reviews, deviations introduced by sprints, releases, feature branches etc. can be easily witnessed.
Unleash the power of the Axivion Suite
Combine the CERT C rules with other coding rule sets, e.g. MISRA C, MISRA C++, AUTOSAR C++14, custom coding rules specific for your environment, and even results of other static code analyses.
Combine the code focus of the CERT C rules with the architecture focus of our architecture verification.
We are constantly adding new rules of CERT C as they emerge into our products.
The image shows the list of changes for CERT violations in the selected time frame. In addition to new violations, one CERT violation was also rectified during the same period.
„The Axivion Suite is another crucial building block for quality assurance in our firmware development, particularly in terms of the increasingly strict safety and security requirements within an industrial environment.“
Christoph Kuner, M.Sc., FS Director, TR-Electronic GmbH