[C-safe-secure-studygroup] Next Steps for the group - Update to WG14

Martin Sebor msebor at gmail.com
Sat Sep 22 20:27:53 BST 2018 

On 09/21/2018 02:05 PM, Robert Seacord wrote:
> I'm still sort of here, although my travel schedule has made it
> impossible to attend the meetings.
>
> I will be attending the C Standards meeting in Pittsburgh, since it's
> just down the road from me.
>
> We could have a face to face on Friday and maybe make some significant
> progress.  I would imagine that we can secure some rooms since CMU is a
> big campus.
>
> Anyone available on this day for an f2f?

I'm flying back home Friday morning so I won't be able to attend.
I'm up for meeting during the week though.

Martin

>
> On Wed, Sep 19, 2018, 1:23 PM Laurence Urhegyi
> <Laurence.Urhegyi at codethink.co.uk
> <mailto:Laurence.Urhegyi at codethink.co.uk>> wrote:
>
>     We just had the meeting. We only had representation from folks with a
>     safety-critical background, so couldn't make any progress looking
>     through rules,
>     sadly.
>
>     An update on current position of the group:
>
>     We currently have no chairperson, as Robert cannot commit to this
>     for the rest
>     of 2018 due to travel schedule. Others in the group cannot take on
>     the role due
>     to other constraints. This means we also don't have enough
>     contribution from
>     people with security-critical expertise: Aaron and Martin have been
>     trying their
>     best but cannot always attend on a regular basis.
>
>     We're due to present an update at the next WG14 meeting (w/c Mon Oct
>     15,
>     Pittsburgh, USA). The ideal outcome would be encouraging some
>     additional
>     contributors to come forward, and maybe even a chairperson. At the
>     very least,
>     some group attendees can meet f2f and take stock of where we're at.
>
>     Below is a first pass of an outline for the update we intend to
>     give. I'd like
>     to request that people review the below and add to it as they see
>     fit. Any
>     contributions are appreciated. In the meantime we'll continue to
>     hold these
>     meetings and hope more people can be available.
>
>     WG14 Update
>     ~~~~~~~~~~~
>
>     * We've been working through the MISRA-C rules to triage them to
>     identify
>     whether they'd fit into a Safety, Security or Safety and Security
>     profile for a
>     technical document, where the rules would be aimed at diagnosis by
>     static
>     analysis tools, as opposed to rules for programmers - along with an
>     established
>     deviation process - as MISRA targets.
>     * We're just over half way through the MISRA-C rules.
>     * After this is complete, the plan is move onto writing the new
>     rules for the
>     new technical document, addressing the three profiles mentioned above.
>     * Some attempt has been made to begin writing - or 're-framing' -
>     the rules so
>     that they would be suitable for static analysis tools, but not much
>     progress has
>     been made here.
>     * Overall progress is slower than hoped for.
>     * We currently have no chairperson and a lack of contributions from
>     people with
>     security-critical expertise, due to constraints on availability more
>     than any
>     other factor.
>
>
>     _______________________________________________
>     C-safe-secure-studygroup mailing list
>     C-safe-secure-studygroup at lists.trustable.io
>     <mailto:C-safe-secure-studygroup at lists.trustable.io>
>     https://lists.trustable.io/cgi-bin/mailman/listinfo/c-safe-secure-studygroup
>
>
>
> _______________________________________________
> C-safe-secure-studygroup mailing list
> C-safe-secure-studygroup at lists.trustable.io
> https://lists.trustable.io/cgi-bin/mailman/listinfo/c-safe-secure-studygroup
>

More information about the C-safe-secure-studygroup mailing list