Research Library

Contextual software analysis is a powerful approach to helping organizations deliver resilient, responsive, and secure applications while preventing business risks resulting from vulnerabilities within the software systems. It works by analyzing all components of a software system together, using the resulting context to make smart observations about the system, find ways to unlock its potential, and identify possible vulnerabilities. 
Organizations should deploy contextual software analysis to gain insight into systems whenever they scale beyond the ability of keeping the whole system in the heads of one or two architects/senior developers. 
(See the Cutter report “Mitigating Software-Related Business Risk Requires Systems Perspective” for a general overview of software risk management and the concept of software risk as business risk.)
Loading...
Driving business risk down is just smart business. Software-related business risk is an increasing portion of business risk, so knowing how to assiduously reduce software risk has become part and parcel of today’s business reality. Fortunately, there is an array of tools and methods that you can apply across your portfolio of software assets and development projects to manage software risk. Industrializing software risk management is critical for organizations in the digital age. It unleashes the “smarts” in developers so that they can work on the difficult parts of building and delivering applications for the future, while ensuring current, past, and future risk is baked out of applications, putting both human intelligence and software intelligence to their best use.
Loading...

This is the first vertical report produced by CAST on global trends in the structural quality of business application software, dedicated to the Financial Services industry. These reports highlight trends in five structural quality characteristics, or health factors - Robustness, Security, Efficiency, Transferability, and Changeability.

Loading...

Despite the fact that enterprise IT departments have invested heavily in dynamic testing tools to verify and validate application performance and scalability before releasing business applications into production, performance issues and response time latency continue to negatively impact the business. By supplementing dynamic performance testing with automated structural quality analysis, development teams have the ability to detect, diagnose, and analyze performance and scalability issues more effectively. This white paper presents a six-step Performance Modeling Process using automated structural quality analysis to identify these potential performance issues earlier in the development lifecycle.

Loading...

CAST has again been named a leader in the Software Quality Analysis and Measurement market by IDC. Discover the business and technology drivers that make software analysis and measurement a vital component of any application development organization, and how CAST solutions help you to leverage code analysis and drive quality and innovation.

Loading...

This is the fourth in a series of reports produced by CAST providing benchmarks on the structural quality of IT applications developed across the globe. This benchmark was developed from 1850 applications consisting of 1.03 BLOC (billions of lines of code), distributed across 329 organizations and 8 countries.

Loading...

In this paper, CAST puts forth several viable frameworks for measuring outcome-based contracting relationships. We believe that clearly defining deliverables is a worthwhile effort, and provides a linchpin for a truly viable outcome-based construct.

Loading...

Any organization that outsources a lot of custom development and enhancement should care about CAST, which has become the de facto standard for measuring the quality and productivity of vendor deliveries in some markets.

Loading...
When a mission-critical application fails, the loss of business revenue is large and swift. Poor application quality causes highly-visible major outages, as well as ongoing lapses in business performance that are less visible, but steadily add up to substantial revenue loss. Even minor quality improvements can result in significant gain. Yet, executives struggle to build a business case to justify proactive investments in application quality. This paper presents a quantitative framework for measuring the immediate and positive revenue impact of improving application quality.
Loading...
Learn how Software Analysis & Measurement (SAM) can objectively evaluate the reliability, security, efficiency, maintainability, and size of software deliverables. Forward-looking organizations and SIs are leveraging this measurement to greatly improve the maturity in vendor-client relationships, by incorporating SAM throughout the outsourcing lifecycle—from RFP preparation to contract development, team transition and benchmarking.
Loading...
Learn how the Lean practices pioneered in the Toyota Production System apply to the Application Development and Maintenance (ADM) of business software. Applying Lean to ADM decreases total cost of ownership and improves business responsiveness and operational dependability.
Loading...

The Global State of Structural Quality in IT Applications

This is the third report produced by CAST on global trends in the structural quality of business application software. Structural quality refers to the engineering soundness of the architecture and coding of an application, rather than to the correctness with which it implements the customer’s functional requirements.

These reports highlight trends in five structural quality characteristics—Robustness, Performance, Security, Changeability, and Transferability. The data in this report are drawn from the Appmarq benchmarking repository maintained by CAST.

The sample in this report consists of 1316 applications submitted by 212 organizations in 12 industry sectors primarily in the United States, Europe, and India. These applications totaled approximately 706 million lines of code.

Loading...

CRASH Benchmark Report 2015 – SAP

This is the first in a series of reports produced by CAST providing benchmarks on the structural quality of IT applications developed in different software technologies. This report benchmarks the structural quality of ABAP, the language used for customizing applications developed in SAP.

The report provides benchmark results for several industry sectors, although except for manufacturing, more data will be needed to establish stable baselines. The report also analyzes the frequency of severe violations in order to better understand remediation strategies for improving structural quality.

Loading...
This is the third biennial report produced by CAST on global trends in the structural quality of business application software. This free summary provides insight into the state of technical debt, programming languages, sourcing and development methodology trends and their impact on the quality of your business-critical applications.
The data reported in this report are from the Appmarq benchmarking repository maintained by CAST, comprising 1316 applications submitted by 212 organizations from 12 industry sectors located primarily in the United States, Europe, and India. These applications totaled approximately 706 million lines of code.
Loading...
This paper on enterprise productivity provides insight into how automated function point counting supports and extends a manual counting process for better insight into the organization’s applications while enabling manual counters to concentrate on high value areas of analysis with more robust insight.
Loading...

We’ve analyzed more than 1,850 applications to better understand how application development and delivery practices impact IT and organizational performance.

We've looked at development methods, team maturity and size, sourcing and confirmed that we are doing some things right – but we still have some things to improve.

Loading...

This is the first vertical report produced by CAST on global trends in the structural quality of business application software, dedicated to the Financial Services industry. These reports highlight trends in five structural quality characteristics, or health factors - Robustness, Security, Efficiency, Transferability, and Changeability.

This report includes industry insights on Agile and DevOps methodologies from Microsoft.

Loading...

This is the first vertical report produced by CAST on global trends in the structural quality of business application software, dedicated to the Insurance industry. Detailed within are trends for five structural quality characteristics, or health factors, including Robustness, Security, Efficiency, Transferability and Changeability.

The report includes industry insights on Insurance technology challenges and opportunities from CGI.

Loading...

To gain transparency into developer productivity and code quality, some companies are using tools, such as those from vendors like CAST, to evaluate the quality of externally developed code and ensure that it meets certain coding and productivity standards.

Loading...

Failure to consider quality requirements results in Technical Debt — the need to rework something in the future based on your failure to pay for it now. Static analysis tools, such as CAST, mine source code to uncover common errors, development shortcuts, and code complexity all of which contribute to Technical Debt.

Loading...

Read exclusive analysis from Andy Kyte, Gartner VP and Fellow, on the systemic risk in the typical application portfolio caused by the accumulation of Technical Debt.

Loading...

Many organizations use risk management to mitigate delivery risk, typically at the expense of application quality. Learn about the importance of focusing on application structural quality to reduce business disruption risk in this Gartner-CAST paper

Loading...

A formal approach to quality management is needed that recognizes the key dimensions of quality (Stakeholders, Technical Quality, Functional Quality), and a set of measures that enable the organization to identify areas for improvement and focus on the specific changes that they can make successfully.

Loading...

This paper features Gartner research and related content from CAST, detailing the three main focus areas to implement a successful SAM program with your vendors, as well as a client example of a large telecom firm that used SAM to lower IT costs and gain visibility into vendor performance.

Loading...

This paper, featuring Gartner research and related content from CAST, delivers recommendations to successfully execute a lightweight, sustainable portfolio analysis that improves overall software risk management, whether applications are managed in-house or by vendors.

Loading...

Ovum analyst Chandranshu Singh, a specialist in ALM tools and static analysis, wrote a report about the latest version of the CAST Application Intelligence Platform. CAST has decided to license this report, normally available only to Ovum subscribers. This research is a pretty thorough review of AIP capabilities, with some comments about AIP’s unique strengths in providing in-depth, holistic view of all application component interactions, for assessment of integration issues as well as simple code quality and complexity analysis.

Loading...

IDC’s Vendor Profile assesses the Automated Software Quality strategy and position of CAST, a world leader in software quality analysis and measurement. IDC discusses the CAST Application Intelligence Platform (AIP) and HIGHLIGHT software as a service offerings. The report also includes summaries of CAST customer references: a money management organization and a services company that made use of CAST analytical capabilities to gain insight into their applications and increased collaboration, innovation, and efficiency as a result

.
Loading...

This is a Gartner-CAST paper which shows the data-driven approach to balancing delivery agility with business risk. The paper features exclusive analysis from Andy Ktye, Gartner VP and Fellow who eloquently illustrates the systemic risk in the application portfolio caused by the accumulation of Technical Debt over the last decade.

Loading...

In this just-released white paper, Dr. Bill Curtis – SVP and Chief Scientist at CAST– examines the Technical Debt metaphor to explain how it can be used to help executives think about software quality in business terms while governing software changeability and maintainability of their application portfolios.

Loading...

If you already have some knowledge of Technical Debt, this ebook provides a 7-step Technical Debt Management Cycle that provides a clear process that can over time reduce the risk of failure of critical applications---and ultimately pay down the interest of the overall liability inherent in your application portfolio.

Loading...

Learn how advanced Software Analysis and Measurement (SAM) can help improve application security by analyzing source code to identify vulnerabilities and architectural patterns in the application, and enable development teams to prevent these vulnerabilities right at the development stage with sophisticated Threat Modeling that takes into account cross-tier and cross-technology interactions.

Loading...

Software productivity must be measured as more than just output divided by input. This guide describes a method for adjusting productivity with quality results to gain greater visibility into the impact that software quality has on the productivity of future releases. After identifying the various measures and their associated methods, we present 11 best practices that can be integrated into a productivity measurement and analysis process and provide recommendations for implementing an effective measurement-driven improvement program.

Loading...

This practical vendor management guide helps IT sourcing executives in establishing an ADM vendor performance management program. The best practices and tools in here are based on real world experiences of practitioner.

Loading...

This practical vendor management guide helps IT sourcing executives in establishing an ADM vendor performance management program. The best practices and tools in here are based on real world experiences of practitioners.

Loading...