The Consortium for IT Software Quality (CISQ) backs Synopsys as a program sponsor to advocate for standards in software quality measurement. The software major, Synopsys has a long history of being pioneer in electronic design automation (EDA) and semiconductor IP and is also helming fast in software quality and security solutions.
“We’re excited that Synopsys has joined CISQ. With their leadership, we will be able to strengthen CISQ’s work in security and extend CISQ standards into the embedded systems domain. Since the Internet of Things integrates embedded systems with IT systems, we will need to address software security at the system level and identify weaknesses that cross through both types of systems,” said Dr. Bill Curtis, Executive Director, CISQ. “Synopsys will work with CISQ to promote the use of standard software quality metrics in all realms of software development and acquisition. Rigorous application of CISQ measures has been shown to lower production defects as well as the cost and business risk of software-intensive systems,” he added.
Going forward, Synopsys will contribute to new software quality standards with CISQ such as:
- Automated Enhancement Points:A standard measure of software size for the analysis of development maintenance and productivity.
- Technical Debt:A standard measure of software cost, effort and risk due to defects remaining in source code at release.
- Quality-Adjusted Productivity: A standard measure of development productivity that takes into account the quality of software produced.
“CISQ is already making remarkable inroads to ensure that software in use today and in the future is safe, secure and reliable. Today’s announcement affirms our commitment to develop code quality standards with CISQ that improve software quality and security,” said Andreas Kuehlmann, senior vice president and general manager of Synopsys’ Software Integrity Group.
Synopsys joins CISQ at a pivotal time: Last year, the Object Management Group approved the CISQ standardized automated quality characteristic measures to detect and quantify the most severe vulnerabilities in system source code tied to software security, reliability, performance efficiency, and maintainability. Synopsys will marshal its resources and position as a thought leader to support CISQ in its efforts to have code quality standards adopted by industry and government.
CISQ and Synopsys are already teaming up for an upcoming open event on May 17, from 1pm-6pm in New York City titled, “Cybersecurity Supply Chain Forum: Considerations for Development and Acquisition in Securing Software in the Supply Chain.” Participants also include: Sprint, OWASP, the American Banking Association, and others.