Why Choose Klocwork?

Klocwork is one of the most accurate code analyzers for C, C++, C#, and Java programming languages. It’s a modern, Agile static code analyzer that scales to projects of any size and works effectively within the DevOps cycle. What’s more, it’s certified for functional safety compliance by TÜV-SÜD, including IEC 61508, ISO 26262, and EN 50128.

PRODUCT BRIEF

 

Compliance

Safe, Secure, & Reliable Code

Higher Code Quality

industry-energy

Faster Releases

Why Use Klocwork

 

Klocwork Key Features

DevOps Ready

Klocwork’s tools integrate with Agile development methods to improve code quality, reduce production time, and identify code defects and vulnerabilities. Features include:

Continuous Integration: Provides developers with comprehensive security, safety, reliability, and performance checkers every time new code is integrated.

Connected desktop and server: Provides developers with the ability to analyze code locally before check-in to ensure clean code is committed.

Reports and metrics: Provides quality reports that classifies software defects into categories, and shows trends, new issues, and areas of code with the most issues in these categories.

devops ready

SmartRank

Klocwork SmartRank provides an automated review of the issues detected by Klocwork during analysis. Based upon its findings, SmartRank recommends which coding issues should be reviewed and fixed first. This enables development teams to accelerate productivity gains.

smart rank

Code Architecture

Structure 101 is a software architecture tool that reorganizes your codebase from the outside to reduce risk. It creates a set of “architecture diagrams” to visually express the interfaces between model containers. These diagrams are mapped to the actual source files, and can be checked to provide a common understanding and guidance for developers.

As changes are made to your codebase, the architectural model will provide guidance on how to ensure that the code is compliant and high quality.

code architecture

“Without Klocwork, we would have had difficulty meeting our objectives
on-time. Even with a relatively small development team, we estimate
900 person hours saved by using Klocwork.”

— Justin Thomas, Software Team Lead, Johns Hopkins University Applied Physics Laboratory

Klocwork Quality Coding Standards

Klocwork makes it easy to comply with quality coding standards.

You can use the following compliance taxonomies to enforce coding standards across your codebase. And, you’ll get fewer false positives and false negatives in your diagnostics.

MISRA Compliance for C and C++

Check your code against the MISRA C® and C++ coding standards — automatically.

The MISRA coding rules identify potential issues in safety-critical systems and flag sections of your code that violate these rules.

The MISRA C checkers enforce MISRA C:2012, including Amendment 1 security rules.

The MISRA C++ checkers enforce MISRA C++:2008 rules.

misra

AUTOSAR Compliance for C++14

Check your code against the AUTOSAR C++14 coding standard — automatically.

The AUTOSAR coding rules identify safety issues in C++14.

Use the AUTOSAR C++14 compliance taxonomy to flag any code that violates these rules.

So, you’ll be able to ensure compliance — and fulfill ISO standards. And, you’ll be able to track and report on compliance.

autostar

NASA Compliance for C and C++

Check your code against the NASA Compliance for C and C++ — automatically.

The taxonomy eliminates coding practices that make code difficult to review or statically analyze. The rules complement the MISRA C guidelines and are incorporated into the Jet Propulsion Laboratory (JPL) coding standards.

The taxonomy identifies code with those 10 weaknesses or vulnerabilities and prioritizes those violations.

key features 1

CERT Compliance for C and C++

Check your code against the CERT C and C++ coding standards — automatically.

The CERT coding rules identify security vulnerabilities in your code. Use the CERT C and C++ taxonomies to flag code that violates these rules. This helps you eliminate undefined behaviors and apply best practices for secure code.

And, Klocwork helps you to prioritize and fix the most critical violations first. It will even provide you with detailed guidance and examples on how to best fix these errors.

cert

CWE Compliance for C, C++, C#, and Java

Check your code against the CWE list of security weaknesses — automatically.

CWE identifies common security weaknesses in C, C++, C#, and Java.

Use the CWE taxonomies to identify code with those security weaknesses. And, Klocwork prioritizes violations to help you identify which violations need to be addressed first.

cwe

DISA STIG Compliance for C, C++, and Java

Check your code against the DISA STIG coding standards — automoatically.

DISA STIG is a cybersecurity methodology for standardizing security protocols within networks, servers, computers, and logical designs. 

Use the taxonomy to identify common security weaknesses for C, C++, and Java. And, Klocwork prioritizes violations to help you identify which need to be addressed first.

key features 2

OWASP Compliance for Java

Check your code against the OWASP list of security weakness— automatically.

Use OWASP, or the Open Web Application Security Project, compliance taxonomy to identify common web application security vulnerabilities for Java. And, Klocwork prioritizes those violations to help you identify which need to be addressed first.

owasp

Klocwork Quality for C, C++, C#, and Java

The Klocwork Quality taxonomy has checkers that focus on improving the overall quality of your code to ensure that it is efficient, effective, and reliable.

Customize a Coding Guideline for your own Business or Project

You can choose your own C, C++, C#, and Java checkers for a project or business wide coding guideline taxonomy. Klocwork will automatically enforce these rules, and report on the compliance of them as well.

quality

Who Uses Klocwork?

Aerospace & Defense

Aerospace, defense, and military organizations use embedded software every day. Making sure that software is safe, secure, and reliable is critical. This puts developers under pressure to produce software without any defects.

Large codebases and complex systems make this a challenge. Tough compliance requirements make it even more difficult. With Klocwork, airborne systems developers can easily prove compliance and develop quality systems.

industry-energy

Energy Technology

Energy and utilities product development teams need to ensure functional safety compliance, meet industry regulations as well as mitigate potential security vulnerabilities and coding errors. This can be a significant challenge for teams to effectively meet.

With Klocwork, energy and utilities product development teams can easily comply with coding standards, identify potential risks, and have visibility into code compliance.

industry-iot

Embedded Development

Managing the increase in digital assets is essential for the efficient design and development of embedded systems. All of those processes need to happen under strict compliance guidelines. For quality-critical industries, code needs to comply with coding standards and industry requirements. And, Klocwork can prove that your code is compliant.

icon-industry-medical-device

Medical Device

The quality of software embedded in medical devices can mean the difference between life and death. Because of this, there is increasing scrutiny for both safety and security in devices.

By using Klockwork, you'll be able to meet ever-changing government regulations, and verify that your medical devices are safe, reliable, and efficient.

icon-solutions-by-industry-automotive

Automotive

Automotive software development requires more than 100 million lines of code. What’s more, the installed embedded software is generally developed independently from the rest of the automobile.

Because of this, development teams must be able to effectively manage a unique set of challenges. With Klocwork, development teams are able to collaborate on projects, and ensure that their code is high quality and meets regulatory compliance.

Functional Safety Standards Supported By Klocwork

Klocwork SCA can be used to achieve industry functional safety standards and certification.

  • IEC 61508 (general industry, defense).
  • ISO 26262 (automotive).
  • EN 50128 (railways).
  • IEC 62304 (medical).
  • DO-178B/C (aerospace).

Certified for ISO, IEC, and EN Compliance

Klocwork is independently certified for compliance.

TÜV-SÜD Certified

Klocwork is TÜV-SÜD certified for compliance with functional safety standards:

  • IEC 61508 (general industry).
  • ISO 26262 (automotive).
  • EN 50128 (railways).
klockwork certificate

Try Klocwork

Request your free trial of Klocwork for C, C++, C#, and Java.

REQUEST MY TRIAL

Check It Out

Learn more about Klocwork.

PRODUCT BRIEF

Get In Touch

Have questions? We’re here to help!

CONTACT US