Tool integration frameworks capture the analysis results of multiple tools, and normalize those results in a common representation that allows the framework user to effectively use a single "meta-tool".
Tool integration is a technique to take advantage of diversity in automated assurance tool capabilities, both within the same class of tools (e.g. source code analyzer tools) as well as the integration of different classes of tools (e.g. source code analyzers and web application scanners).
DISCLAIMER: Certain trade names and company products are mentioned in the text or identified. In no case does such identification imply recommendation or endorsement by the National Institute of Standards and Technology (NIST), nor does it imply that the products are necessarily the best available for the purpose.
By selecting almost any of these links, you will be leaving NIST webspace. We provide these links because they may have information of interest to you. No inferences should be drawn because some sites are referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the assertions presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites.
Please contact us if you think something should be included. If it has all the characteristics of the tool, techniques, etc., we will be happy to add it. You can contact us at samate(at)nist(dot)gov.