On Target: Embedded Systems

Contact us ASAP to schedule a meeting!

We will be making the trip across the Atlantic again this year to visit the largest embedded technology tradeshow of the year, embedded world in Nuremberg, Germany.  Last year, the conference boasted over 19,000 visitors and over 800 exhibiting companies! 

While we are at the conference, we welcome the opportunity to meet with attending vendors to learn more about their embedded solutions and any show-related (or other recent) announcements.

You can arrange a meeting time with VDC by doing one of the following:

For Software and Tools related meetings

Contact Jared Weiner, Analyst, Embedded Software & Tools Practice, VDC Research Group at: jweiner@vdcresearch.com or 508.653.9000 x143.

For Hardware related meetings

Contact Jonathan Hastings, Analyst, Embedded Hardware & Systems Practice, VDC Research Group at: jhastings@vdcresearch.com or 508.653.9000 x127.
 
Haven't decided if you're attending embedded world yet?

Please check out the embedded world website for more information on the conference program as well as information on all of the companies that will be exhibiting. You can also click here to register.

We look forward to seeing you at the show!

What Happened?

In case you missed it, the National Security Agency (NSA) announced last week the initial public release of a security-enhanced (SE) version of Android based on SE Linux. As stated by the NSA, the primary objective of SE Android is to “identify and address critical gaps in the security of Android.” The enhanced security features of SE Android are designed prevent malicious attacks by restricting the permissions of Android applications (superseding user-approved settings) while also isolating individual apps from each other.

VDC’s View

The openness of Android has been widely regarded as both a blessing and a curse during the platform’s first few years of relevance in the mobile device market, leading to seemingly equal parts innovation and fragmentation. With regard to apps, this openness allows independent developers (and hackers) to create apps that have access to a variety of internal device features, such as Bluetooth, network communication, personal information, storage, system tools, and more. While this has certainly been beneficial toward the creation and expansion of the vast Android Market, the security implications have in many cases prevented Android devices from being utilized in various government and enterprise environments. Of course, security concerns have also played a role in what to this point has been a relatively low rate of adoption of Android beyond the mobile and consumer electronics industries.

VDC continues to believe that Android will eventually become widely deployed in automotive infotainment applications, medical devices, military communication equipment, and other applications that place a premium on connectivity requirements, sophisticated user interaction, and application availability. SE Android, which is still in its early stages, may represent the first step toward building an implementation of Android that would be suitable for embedded devices with security requirements above and beyond those of typical smartphones, tablets, and other consumer electronics products.

However, while the strict access control policies of SE Android are likely to be attractive to OEMs, a significant level of compiling and other custom installation processes would still be required to deploy the platform – a process further complicated by customization requirements inherent in Android-based vertical market-specific devices. Herein lay the opportunities for embedded software vendors to capitalize on the momentum behind Android and perhaps finally help bring the platform to a much broader range of embedded device classes. By leveraging their domain expertise – both in the development of vertical market-specific applications and in embedded device security – vendors such as Green Hills Software, Mentor Graphics, MontaVista Software, SYSGO, Wind River, and others are expected to play a vital role in enabling OEMs to exploit the benefits of Android while also maintaining a secure operating environment. VDC also believes that it will be critical for these organizations to also evangelize the capabilities of Android as they pertain to security-enabled devices, as the community as a whole may not be inclined to completely accept the notion of deploying Android in environments where security is paramount.

VDC will investigate this trend among others in our upcoming report, Android in the Embedded Systems Market, from our research service Strategic Insights 2012: Embedded Software & Tools Market. Please contact us for more information.

Anyone still keep a dictionary and thesaurus next to your writing station?

If you’re like me, the computer is where you write and automated spell checking in email and word processing programs have long since relegated these once essential writing tools to dust collecting duty on a bookshelf. 

Klocwork, a leading supplier of embedded automated test & verification tools, is bringing the spell checker usability model to source code analysis (SCA). The company’s newest release of their main product, Klocwork Insight 9.5, provides C/C++ developers with “On-the-fly” analysis. By underlining security and critical defects in code as it is written, the tool helps users move away from the inefficient batch processing model of code analysis and further towards the ideal of SCA completed by developers in their regular work flow rather than by dedicated testing groups.

This release also provides “On-the-fly” reporting tools. Using simple drag and drop pivot chart capabilities, developer teams can rapidly create reports to meet their organization’s needs.

“On-the-fly” impact analysis is the third improvement Klocwork promotes with the Insight 9.5 launch.  Their release announcement indicates it “offers cross-project impact analysis and reporting which immediately indicates whether a reported issue exists in other code bases, branches or builds. With this smart matching technology, development teams that re-use code across multiple systems won't waste time finding and fixing the same issues over-and-over.”

The benefits promised by shifting source code analysis into a developer’s workflow are clear. Earlier discovery of coding issues such as security defects, memory leaks and bug can lower overall development costs and reduce lost time spent writing flawed code. We could see customization of this type of instant notification functionality gaining even further value going forward as more organizations adopt or establish their coding standards. The ability to prioritize issues based on severity and prevalence across multiple code streams and avoid redundancy by implementing a resolution en masse is a compelling value proposition. 

For more insight into these tools, including automated testing & verification tools such as those offered by Klocwork, please see VDC Research’s upcoming analysis of the Software & Systems Lifecycle Management Tool markets.