Implement DISA STIG Rules with Polyspace Bug Finder
Versione 2.0.0.0 (809 KB) da
Christian Bard
Polyspace Bug Finder is a static analysis tool that can help automate the implementation of a subset of STIG rules.
The Defense Information Systems Agency (DISA) has brought out many rules to enhance the security of DoD IA and IA-enabled devices/systems. These rules come in the form of the DISA Security Technical Implementation Guides (STIG). The STIG contains technical guidance to "lock down" information systems/software that might otherwise be vulnerable to a malicious computer attack.
Polyspace Bug Finder is a static analysis tool that can help automate the implementation of a subset of STIG rules. Polyspace can detect several kinds of security vulnerabilities in your code such as unsafe encryption functions, unintended privilege elevation, tainted data, and other security issues. Using the Polyspace Bug Finder checkers, you can check for violations of STIG rules in your code.
The attached document and spreadsheet contains a mapping from DISA STIG rules (version 5) and the way to use this mapping with Polyspace Bug Finder. It also contains a checkers activation file mapped to DISA STIG rules and a Review Scope to filter results allowing to display only those results that correspond to DISA STIG rules.
Cita come
Christian Bard (2024). Implement DISA STIG Rules with Polyspace Bug Finder (https://www.mathworks.com/matlabcentral/fileexchange/66685-implement-disa-stig-rules-with-polyspace-bug-finder), MATLAB Central File Exchange. Recuperato .
Compatibilità della release di MATLAB
Creato con
R2024b
Compatibile con qualsiasi release
Compatibilità della piattaforma
Windows macOS LinuxTag
Community Treasure Hunt
Find the treasures in MATLAB Central and discover how the community can help you!
Start Hunting!Scopri Live Editor
Crea script con codice, output e testo formattato in un unico documento eseguibile.
Versione | Pubblicato | Note della release | |
---|---|---|---|
2.0.0.0 | Updated some rules and created a DISA STIG Polyspace coding standards available since R2024b |
||
1.2.0.0 | Compatible with version 5 of DISA STIG rules and added a checkers activation file mapped to DISA STIG rules |
||
1.1.0.0 | Added Review Scope and corrected link inside Excel sheet |
||
1.0.0.0 |