Presentation is loading. Please wait.

Presentation is loading. Please wait.

Code Reviews James Walden Northern Kentucky University.

Published byAnthony Jefferson Modified over 9 years ago

Similar presentations

Presentation on theme: "Code Reviews James Walden Northern Kentucky University."— Presentation transcript:

1 Code Reviews James Walden Northern Kentucky University

2 CSC 666: Secure Software Engineering Topics 1.Types of Reviews 2.Code Review Process 3.Checklists 4.Prioritizing Code to Review

3 CSC 666: Secure Software Engineering Code Reviews Inspection of source code by one or more people who aren’t the author of the code.  Goal: Identify defects for later removal.  People: Moderator, reviewers.  Scope: Module or small set of classes.  Time: 1-2 hours; <1kloc

4 CSC 666: Secure Software Engineering Benefits of Code Reviews 1.Find defects sooner in the lifecycle. (IBM finds 82% of defects before testing.) 2.Find defects with less effort than testing. (IBM—rev: 3.5 hrs/defect, test: 15-25 hrs/defect.) 3.Find different defects than testing. (Can identify design and requirements problems too.) 4.Educate developers about security bugs. (Developers frequently make the same mistakes.)

5 CSC 666: Secure Software Engineering PCI DSS 6.3.7.b Obtain and review policies to confirm that all custom application code changes for web applications must be reviewed (using either manual or automated processes) as follows: ƒ Code changes are reviewed by individuals other then the originating code author, and by individuals who are knowledgeable in code revie techniques and secure coding practices. ƒ Code reviews ensure code is developed accordin to secure coding guidelines such as the Open Web Security Project Guide (see PCI DSS Requirement 6.5). ƒ Appropriate corrections are implemented prior to release. ƒ Code review results are reviewed and approved by management prior to release.

6 CSC 666: Secure Software Engineering Inspections  Most formal process.  Thorough coverage with separated roles.  Use checklists to focus on specified goals.  Collect metrics to track defects.  Determine whether further inspections of revised software needed at end of meeting.  Extensive documentation of effectiveness.  One study found 16-20 defects/kloc with inspections compared with 3 defects/kloc in informal walkthrough.

7 CSC 666: Secure Software Engineering Roles in Reviews 1.Moderator Manages meeting; follows up on issues. 2.Reader Paraphrases code during meeting. Not the author. 3.Recorder Records bugs discovered. 4.Author Provides context for code; answers questions. Makes corrections after code review.

8 CSC 666: Secure Software Engineering Walkthroughs  Less formal process.  Author leads meeting and describes code.  Focus on author needs, not quality goals.  No checklists used or metrics gathered.  Quality varies widely.  Walkthrough quality depends solely on author.  Useful for educating developers about code, provide high level view of design and defects.

9 CSC 666: Secure Software Engineering Code Review Process Planning Author Moderator Prep Everyone Meeting Everyone Rework Author Follow-up Author Moderator

10 CSC 666: Secure Software Engineering Planning 1.Author initiates Planning once code ready. 2.A Moderator is assigned to inspection. 3.Author and Moderator assemble inspection pkg. 4.Moderator identifies other participants. Planning Author Moderator Prep Everyone Meeting Everyone Rework Author Follow-up Author Moderator

11 CSC 666: Secure Software Engineering Preparation 1.Reviewers examine inspection package. 2.Reviewers use checklists and analysis tools. 3.Reviewers mark bugs found. Planning Author Moderator Prep Everyone Meeting Everyone Rework Author Follow-up Author Moderator

12 CSC 666: Secure Software Engineering Meeting 1.Reader describes code in own words. 2.Reviewers comment and ask questions. 3.Recorder notes all potential bugs, suggestions. 4.Team appraises code at meeting conclusion. Planning Author Moderator Prep Everyone Meeting Everyone Rework Author Follow-up Author Moderator

13 CSC 666: Secure Software Engineering Rework Author addresses issues recorded at meeting. Planning Author Moderator Prep Everyone Meeting Everyone Rework Author Follow-up Author Moderator

14 CSC 666: Secure Software Engineering Follow-up 1.Moderator meets with Author about rework. 2.Moderator verifies all changes made correctly. 3.Author checks in corrected code. Planning Author Moderator Prep Everyone Meeting Everyone Rework Author Follow-up Author Moderator

15 CSC 666: Secure Software Engineering Formality Spectrum ReviewPlanningPrepMeetingReworkFollowup InspectionYes Team ReviewYes No WalkthroughYesNoYes No Pair Programming YesNoCon- tinuous Yes Peer Deskcheck NoYesPossiblyYesNo Ad Hoc Review No Yes No

16 CSC 666: Secure Software Engineering Code Review Tips 1.Know your limits. Typical review speed is 150-200 lines/hour. Limit meeting length to 1-2 hours. 2.Know what bugs to look for. Checklists Static analysis tools 3.Use tools. Simple tools: grep, findstr Code viewers Static analysis tools 4.Require preparation before the meeting.

17 CSC 666: Secure Software Engineering Checklists Security reviews should include checklists of common problems, including: 1.SQL injection 2.Cross-site scripting 3.Input validation bugs 4.Checking return values 5.Resource name canonicalization 6.Race conditions

18 CSC 666: Secure Software Engineering Code Review Problems 1.Requires substantial expertise in area of programming and security to be effective. 2.Human readers are fallible and will miss mistakes. 3.Code reviews are slow. Unreviewed legacy code will take time to review.

19 CSC 666: Secure Software Engineering Prioritizing Code If you can’t review everything, review  Code that runs with privileged mode.  Code that listens on globally accessible sockets.  Code that is accessible w/o authentication.  Code with a history of vulnerabilities.  Code that handles sensitive data.  Complex code.  Code that changes frequently.

20 CSC 666: Secure Software Engineering Reviewing for SQL Injection

21 CSC 666: Secure Software Engineering Ex: Zune infinite loop on 12/31/08 year = 1980; while (days > 365) { if (IsLeapYear(year)) { if (days > 366) { days -= 366; year += 1; } } else { days -= 365; year += 1; } }

22 CSC 666: Secure Software Engineering Key Points  Roles  Moderator  Reader  Recorder  Author  Process  Planning  Preparation  Meeting  Re-work  Followup

23 CSC 666: Secure Software Engineering References 1.Brian Chess and Jacob West, Secure Programming with Static Analysis, Addison-Wesley, 2007. 2.Michael Howard, “A Process for Performing Security Code Reviews.” IEEE Security & Privacy, July 2006. 3.Eoin Keary et. al., OWASP Code Review Guide 1.1, http://www.owasp.org/index.php/Category:OWASP_Co de_Review_Project, 2008. http://www.owasp.org/index.php/Category:OWASP_Co de_Review_Project 4.Steve McConnell, Code Complete, 2/e, Microsoft Press, 2004. 5.Gary McGraw, Software Security, Addison-Wesley, 2006. 6.PCI Security Standards Council, PCI DSS Requirements and Security Assessment Procedures, v1.2, 2008. 7.Karl Wiegers, Peer Reviews in Software, Addison- Wesley, 2002.

Download ppt "Code Reviews James Walden Northern Kentucky University."

Similar presentations

Configuration Management

Configuration Management
1.Quality-“a characteristic or attribute of something.” As an attribute of an item, quality refers to measurable characteristics— things we are able to.

1.Quality-“a characteristic or attribute of something.” As an attribute of an item, quality refers to measurable characteristics— things we are able to.
Damian Gordon.  Static Testing is the testing of a component or system at a specification or implementation level without execution of the software.

Damian Gordon.  Static Testing is the testing of a component or system at a specification or implementation level without execution of the software.
More CMM Part Two : Details.

More CMM Part Two : Details.
Copyright (c) 2003 Howard E. Dow1 Results from Inspecting Test Automation Scripts Howie Dow

Copyright (c) 2003 Howard E. Dow1 Results from Inspecting Test Automation Scripts Howie Dow
Code Reviews James Walden Northern Kentucky University.

Code Reviews James Walden Northern Kentucky University.
Engineering Secure Software. The Power of Source Code  White box testing Testers have intimate knowledge of the specifications, design, Often done by.

Engineering Secure Software. The Power of Source Code  White box testing Testers have intimate knowledge of the specifications, design, Often done by.
Copyright © 1994 Carnegie Mellon University Disciplined Software Engineering - Lecture 1 1 Disciplined Software Engineering Lecture #7 Software Engineering.

Copyright © 1994 Carnegie Mellon University Disciplined Software Engineering - Lecture 1 1 Disciplined Software Engineering Lecture #7 Software Engineering.
Static Technique. Static Technique - Review  A way of testing software work products  Program code, requirement spec., design spec.  Test plan, test.

Static Technique. Static Technique - Review  A way of testing software work products  Program code, requirement spec., design spec.  Test plan, test.
Inspection (c) 2007 Mauro Pezzè & Michal Young Ch 18, slide 1 Photo credit jurvetson on Flickr.com; creative commons attribution license.

Inspection (c) 2007 Mauro Pezzè & Michal Young Ch 18, slide 1 Photo credit jurvetson on Flickr.com; creative commons attribution license.
Testing Without Executing the Code Pavlina Koleva Junior QA Engineer WinCore Telerik QA Academy Telerik QA Academy.

Testing Without Executing the Code Pavlina Koleva Junior QA Engineer WinCore Telerik QA Academy Telerik QA Academy.
Overview Lesson 10,11 - Software Quality Assurance

Overview Lesson 10,11 - Software Quality Assurance
Software Quality Metrics

Software Quality Metrics
Applied Software Project Management Andrew Stellman & Jennifer Greene Applied Software Project Management Applied Software.

Applied Software Project Management Andrew Stellman & Jennifer Greene Applied Software Project Management Applied Software.
SE 555 Software Requirements & Specification Requirements Validation.

SE 555 Software Requirements & Specification Requirements Validation.
CSC 395 – Software Engineering Lecture 9: Testing -or- How I Stopped Worrying and Learned to Love the Bug.

CSC 395 – Software Engineering Lecture 9: Testing -or- How I Stopped Worrying and Learned to Love the Bug.
 QUALITY ASSURANCE:  QA is defined as a procedure or set of procedures intended to ensure that a product or service under development (before work is.

 QUALITY ASSURANCE:  QA is defined as a procedure or set of procedures intended to ensure that a product or service under development (before work is.
Verification and Validation

Verification and Validation
1 Software Inspections and Walkthroughs Author: A. Frank Ackerman Presented by Cynthia Johnson EEL6883.

1 Software Inspections and Walkthroughs Author: A. Frank Ackerman Presented by Cynthia Johnson EEL6883.
KENDA ALBERTSON Formal Peer Review Processes for Software and Documents.

KENDA ALBERTSON Formal Peer Review Processes for Software and Documents.

Similar presentations

Ads by Google