Show TOC

GlossaryLocate this document in the navigation structure

Term Description

Central Check System

This system is a 7.50 pure SAP Basis System (SAP_BASIS 7.50) and must be installed and configured within the system landscape. The Central Check System takes over the role of the ATC master system.

Checked System

Represents a test system that includes the custom code to be checked.

(Code Inspector) Check Variant

A check variant consists of one or several check categories, which, in turn, consist of one or several individual checks.

Correction System

A correction system defines an RFC connection that is used in a remote ATC scenario for viewing or changing source code from within the Central Check System.

CVA License

Remote security checks are only available for SAP customers with a CVA license, that is, license for SAP NetWeaver Application Server, add-on for code vulnerability nalysis as a separate, fee-based product.

Exemption

If the checked code is not supposed to be corrected, the developer can request an exemption for a check, or an individual check message, for a single finding, or a number of findings within the same package or development object. Once approved by a quality manager, an exemption masks an ATC error or warning message. The finding does not appear as an open issue in the new ATC results .

Object Provider

An object provider defines the RFC connection to be used for analysis in a remote SAP system. While an ATC check run is executed, the ATC runtime uses this RFC connection to the checked system to extract a model from the custom code.

Remote Stubs (RFC Stubs)

Remote Stubs serve as an interface between the Central Check System and the Checked Systems. Remote Stubs extract a model from the custom code, which is used by the ATC check in the Central Check System to detect possible security risks in source code of the Checked Systems.

System Group

A system group subsumes multiple SAP systems (the productive system, the test systems to be checked, and the corresponding development systems), which all represent - for example - a part of a system landscape of one and the same SAP release.