Polyspace

Polyspace
Name	Polyspace
Developer	MathWorks
Released	1997
Latest release	R2023b
Operating system	Windows, Linux
License	Proprietary
Genre	Static analysis, formal methods, software verification

Polyspace

Polyspace is a commercial static analysis and formal verification suite for C, C++ and Ada code developed to detect runtime errors and prove absence of certain classes of defects. It is commonly used by teams at NASA, European Space Agency, Boeing, Airbus, and Toyota for high‑assurance embedded software where standards such as DO-178C, ISO 26262, and MISRA C apply. The tools integrate with model‑based development environments like Simulink and with toolchains from Arm, Intel Corporation, and NVIDIA.

Overview

Polyspace provides proof‑based analysis and static code checking that distinguishes between proven correct code and code containing potential run‑time errors such as buffer overruns, division by zero, null pointer dereference, and arithmetic overflow. It complements dynamic testing approaches used in projects at Lockheed Martin, Raytheon Technologies, General Motors, Ford Motor Company, and Siemens. Polyspace supports certification artifacts for standards used by FAA, European Union Aviation Safety Agency, TÜV, and ISO bodies. It is often applied alongside tools like Coverity, Klocwork, SonarQube, and Cppcheck in complex toolchains for companies including Schneider Electric, Honeywell, Philips, and Thales Group.

History and Development

Early research on abstract interpretation and formal methods by groups at INRIA, École Polytechnique, and researchers such as Patrick Cousot informed the theoretical basis for tools like Polyspace. The commercial lineage includes technology transferred through startups and acquisitions involving firms connected to The MathWorks, Inc.. Over time it evolved to address certification concerns raised in projects at NASA Jet Propulsion Laboratory and safety programs at BMW, Daimler AG, Hyundai Motor Company, and Volvo Cars. Major milestones paralleled developments in standards such as MISRA, ISO 26262, IEC 61508, and guidance from RTCA and EUROCAE. Industry adoption expanded through partnerships with vendors like Wind River, Mentor Graphics (now Siemens EDA), and Green Hills Software.

Products and Toolset

The Polyspace product line includes desktop and server offerings with specific tools for code verification, code inspection, and integration into continuous integration systems used by teams at GitHub, GitLab, Atlassian, and Jenkins. It provides connectors to development environments such as Microsoft Visual Studio, Eclipse, and Sublime Text workflows used at companies like Microsoft, Google, and Amazon. The toolset creates reports consumed by quality management systems from vendors such as IBM and SAP and interfaces with requirements management tools from PTC, IBM Rational DOORS, and Polarion used by Northrop Grumman and BAE Systems.

Analysis Techniques and Technology

Polyspace applies techniques from abstract interpretation, model checking, and sound static analysis derived from academic work at Massachusetts Institute of Technology, Carnegie Mellon University, Stanford University, and University of Cambridge. It uses formal proofs to produce classifications (e.g., proven, unproven, or error) and employs dataflow analysis and symbolic execution approaches similar to research at University of California, Berkeley and ETH Zurich. Compiler front‑ends compatible with toolchains from GCC, Clang/LLVM, and vendors such as ARM Holdings and Intel Corporation allow it to parse code bases used in projects at SpaceX and Blue Origin. The technology supports counterexample generation and traceability useful to auditors at CERT Coordination Center and compliance teams at Accenture.

Use Cases and Industry Applications

Polyspace is used in aerospace projects at Boeing and Airbus for flight control software, in automotive safety systems at Volkswagen, Renault, and Hyundai, and in medical device firmware development at Medtronic, Johnson & Johnson, and Abbott Laboratories. It supports embedded control systems in robotics programs at Boston Dynamics and in industrial automation installations by ABB and Rockwell Automation. The suite is applied in telecommunications firmware at Nokia, Ericsson, and Cisco Systems and in defence systems developed by Thales Group and BAE Systems.

Integration and Workflow

Polyspace integrates into continuous integration and continuous delivery pipelines with servers like Jenkins, Bamboo, Azure DevOps, and GitLab CI/CD used across enterprises such as Oracle and SAP. It produces artifacts used in certification packages submitted to authorities including the Federal Aviation Administration and European Union Aviation Safety Agency. The tools connect with configuration management systems like Git, Subversion, and Perforce Helix Core and issue trackers including JIRA and Bugzilla. Integration facilitates collaboration with teams using model‑based design tools such as Simulink and code generators from MathWorks and dSPACE.

Reception and Limitations

Practitioners at Airbus, NASA, and Honda cite Polyspace for its ability to provide mathematically sound guarantees on certain classes of errors, aiding certification and reducing test burden. Reviews in industry forums mention tradeoffs similar to those discussed in research from ACM and IEEE conferences: scalability limits on very large codebases, integration complexity with proprietary build systems at Lockheed Martin and Northrop Grumman, and the need for skilled analysts as noted in consultancy reports by McKinsey & Company and Deloitte. Comparative evaluations with tools from Synopsys, GrammaTech, and open‑source projects show differing strengths in precision, performance, and ease of use for teams at Intel Corporation and AMD.

Category:Static analysis tools