Last week, I logged into the first in a three-part webinar series on the topic of software testing in mission-critical software. In the first episode, Confronting the mission-critical software testing challenge, Rod Cope (CTO, Rogue Wave Software) presented a compelling argument that the demand for shorter release cycles and increasing feature complexity requires the deployment of sophisticated automated testing methodologies.
Forrester Research has also confirmed what developers across many industries are sensing – the analysts are forecasting a 10x shortening of release cycles despite increasing software complexity.
The online audience also agreed with Rod’s enthusiasm for automated testing, as a live poll conducted during the webinar showed that automated testing was the most popular among developers and managers.
The focus of the webinar then shifted to the challenges of the changing security landscape, where increased software complexity and multiple sources of code combine to make the task of securing code quite daunting.
The audience confirmed Rod’s suspicion, that between 25-50 percent of developers’ time is spent working on security issues in code. There is no doubt that increasing the use of automated tools that are fully integrated into the software development lifecycle can reduce this effort and free up developers to work on features customers are asking for.
Rod suggested the following best practices for securing your software:
• Clean design
• Methodical process
• Careful analysis
• Good tools
Finally, Rod touched on how the use of existing industry software quality and security standards (such as MISRA, CWE, and OWASP) can help any development team improve their product, and automation of standards compliance measurement is a key to success.
If you are interested in learning more about how you can improve software quality in mission-critical systems, yours truly will be presenting episode 2 in this webinar series, entitled Static analysis works for mission-critical systems, why not yours?, on February 8, 2017. Register now.
If you missed Rod’s presentation, you’ve got plenty of time to catch up! The recording of episode 1 can be found here.