Software Development Standards Compliance

Parasoft’s comprehensive development Testing solution delivers proven results. It provides out-of-the-box support for achieving compliance with FDA, DO-178B/C, MISRA, JSF, PCI-DSS, ISO, IEC, and more, by automating static analysis, peer code review, unit testing, coverage analysis, traceability, and other software validation practices.

  • The most comprehensive development compliance solution
  • Integrate compliance policies into the SDLC and team workflow
  • Accurately and consistently automate verification and validation tasks
  • Achieve unparalleled process consistency, visibility and traceability
  • Leverage compliance-based templates to jumpstart compliance efforts

CASE STUDIES

SELEX-ES Automated Defect Prevention Case Study

SELEX-ES wanted to eliminate software defects early in the SDLC. Learn how Parasoft static analysis helped them increase reliability while reducing reduced development time, costs, and resources.

Cisco Static Analysis Case Study

To comply with corporate quality and security initiatives, Cisco Systems adopted static analysis, unit testing and code review. Learn how they automated these practices and seamlessly integrated them into their existing processes to deliver compliant code without impeding productivity.

Bovie Medical Device Testing Case Study

Bovie Medical had been using an outside vendor to perform the software validation required for FDA compliance, but they wanted to improve the effectiveness of testing while at the same time reduce testing costs. Learn how Parasoft helped them move verification and validation testing in-house—cutting costs approximately in half and getting to market 6 months sooner.

Thales Static Analysis Case Study

By applying Parasoft solutions to its Integrated Tramway Management Solutionsproject—then later deploying it across the entire Automatic Vehicle Location System division—Thales Italia reduced its rate of defective components by 30% and significantly increased application performance.

Inomed Medical Device Testing Case Study

Inomed wanted to streamline the risk management processes they established for IEC 62304 medical device software certification. Learn how they increased efficiency through automation—and also achieved full requirements traceability.

Out-of-the-box Support for Key Standards

Efficiently and consistently drive any policy or group of policies that your organization must follow. Our solution provides templates for common regulatory compliance initiatives, including:
  • FDA
  • PCI DSS
  • OWASP
  • CWE/SANS
  • SAMATE
  • DO-178B/C
  • ISO 26262 & ASIL
  • IEC 61508 & SIL
  • MISRA
  • JSF
  • Web Accessibility (Section 508, WAI, WCAG)
  • Outsourcing SLAs

Pre-configured settings on industry and regulatory standards enable teams to rapidly assess compliance-without having to determine how the standards’ requirements translate to code. Parasoft works with each organization to optimize the templates for their unique demands. This jumpstarts compliance and establishes the foundation for continuous improvement.

End-to-End Quality Management

Parasoft provides out-of-the-box automation of the key validation practices named in FDA, PCI DSS, DO-178B/C and other key regulations, including:

Parasoft’s technology suite extends from Java, C, C++, and .NET programming languages to SOA/Cloud, Web/RIA applications.

Reporting for Compliance and Auditability

Robust and easily configurable reporting capabilities help you document that applications comply with test coverage requirements mandated for regulatory compliance (FDA, DO-178B/C, safety-critical, etc.).

Along with a clear report of each test’s pass/fail status, we can report:

  • Coverage percentages by file, class, function/method
  • Annotated source code
  • Coverage for individual test cases
  • Files with coverage below a specified threshold

Automatically Monitor Adherence to Custom Rules

Automatically monitor compliance to custom policy requirements. The library of hundreds of rules designed to check common industry best practices can be customized as needed to match specific policy requirements or address even the most complex and unique requirements. Map rule names, descriptions, and severities to your organization’s policies to establish a fully-customized policy management and reporting interface.

More

Integrated Continuous Compliance Process into the Workflow and Across the SDLC

Parasoft establishes a continuous compliance process that ensures compliance tasks begin early and are deployed across every stage of the SDLC, as recommended by the FDA, PCI DSS, and other regulations. To ensure that quality is unobtrusively built into the development process, Parasoft integrates compliance tasks into the team’s existing workflow and automates them so team members can focus on work that truly require human intelligence.

Comprehensive Requirements Traceability

For traceability, requirements are correlated with automated and manual tests, source code, and development/testing tasks. The current level of verification for each requirement or task (including task pass/fail status and coverage) can be assessed at any time by back tracing to all associated tests. This correlation also enables change-based testing, which identifies exactly which tests are impacted by source code and requirement modifications. Teams know exactly which tests need to be rerun and which code needs to be re-reviewed.

In addition to tracking when the functionality for each requirement is implemented and tested, Parasoft also monitors compliance to non-functional requirements (e.g., coding standards, peer review, coverage, etc.) The system can be configured so that functionality is not considered “complete” unless it complies with the team’s quality expectations.