MISRA C++:2023 supports companies that use the programming language C++ in the development of safety-critical software. With the new MISRA standard, developers can meet the requirements for static analysis specified by functional safety standards such as ISO 26262, by ensuring and documenting the MISRA compliance of their software applications.
Safe code is extremely important in the automotive sector. MISRA C++:2023 supports companies that use the programming language C++ in the development of safety-critical software.
(Image: freely licensed from Pixabay)
Michał Rozenau is an active member of the MISRA C and MISRA C++ working groups and a project engineer at Parasoft.
AUTOSAR and MISRA have jointly developed a set of programming guidelines that enable secure programming with C++17. The published document is titled MISRA C++:2023. MISRA C++ consists of a collection of coding guidelines that define a subset of the C++ language for use in critical systems, to minimize the risk of errors and non-conforming programs.
The C++ Standard does not completely define the language. There are situations where behavior is undefined, unspecified, or implementation-defined. If a C++ program is based on such situations, there's no guarantee that it will behave predictably or be portable. This is exactly where the MISRA guidelines come into play – they help identify such situations to ensure the safety and reliability of the software. Additionally, compliant programs can be written in a way that clearly indicates an error in the code or is highly likely to be misinterpreted by developers. The MISRA guidelines target such cases.
Gallery
The development of MISRA C++
The first version of MISRA C++ from 2008 focused on C++03 and was very popular, but it was overtaken by the further development of C++ and new features in C++11. To close this gap, the AUTOSAR consortium published the AUTOSAR C++ Guidelines as part of the Adaptive Platform in March 2017.
The youngest offspring of the MISRA standard is MISRA C++:2023.
(Image:Parasoft)
Adaptive AUTOSAR uses C++14 as its language of choice, and the platform needed a safety-oriented coding standard to support developers. About 70 percent of the unchanged MISRA C++2008 guidelines were adopted in AUTOSAR C++. With the continuous evolution of the language, there are 17 new language features for C++, which generated a need for new programming guidelines. MISRA and AUTOSAR decided to consolidate the standards in one publication, and MISRA undertook the work on the new edition of the standard with all necessary updates for C++17. The result of this work is MISRA C++:2023, released in October 2023.
Guidelines and rules
MISRA C++:2023 Guidelines are classified as rules or guidelines (directives). Rules are those guidelines that contain a complete definition of conformity and non-conformity. For guidelines, it is not possible to provide the complete description required for a conformity check because, for example, they depend on design decisions made within the context of a specific project.
Every guideline is assigned to one of the following categories:
mandatory
required
advisory
Rules/directives are also classified according to decidability and scope.
Mandatory guidelines must be followed without the possibility of deviation. Deviations from required guidelines are possible – provided that the formal deviation procedure is followed and all potential issues are resolved otherwise. Advisory guidelines are a kind of recommendation that should be followed as much as possible.
"Decidability" defines whether the rule can generally be analyzed by automated tools or not. "Scope" indicates whether a guideline should be checked through the analysis of a single translation unit or the entire system.
There are 179 MISRA C++:2023 Guidelines, four directives and 175 rules, which are grouped into sections that correspond to the sections of the C++ standard. These are:
Basic concepts
Standard conversions
Expressions
Statements
Special member functions
Exception handling
Some of these rules are derived from the AUTOSAR Coding Guidelines or the old MISRA C++:2008. However, the MISRA guidelines focused solely on implementation, whereas AUTOSAR also provided recommendations for design, toolchain infrastructure, or documentation. Generally, MISRA C++:2023 focuses on the semantics of the code and error avoidance without imposing too many stylistic requirements.
Conformance with MISRA C++:2023
According to MISRA C++:2023, the conformance processes defined in the compliance document must be adhered to. This is a separate document that is shared by the MISRA C and MISRA C++ standards. The latest version was published in 2020 and replaces the previous version from 2016.
The Parasoft MISRA C2023 Guideline Enforcement Plan.
(Image:Parasoft)
MISRA Compliance contains a collection of requirements for the conformance process and reporting. It defines specific reports that are expected as compliance artifacts.
The Guideline Enforcement Plan defines all technical means used to enforce the guidelines.
The Guideline Recategorization Plan describes all changes to the guideline categories that have been introduced for the specific project.
Date: 08.12.2025
Naturally, we always handle your personal data responsibly. Any personal data we receive from you is processed in accordance with applicable data protection legislation. For detailed information please see our privacy policy.
Consent to the use of data for promotional purposes
I hereby consent to Vogel Communications Group GmbH & Co. KG, Max-Planck-Str. 7-9, 97082 Würzburg including any affiliated companies according to §§ 15 et seq. AktG (hereafter: Vogel Communications Group) using my e-mail address to send editorial newsletters. A list of all affiliated companies can be found here
Newsletter content may include all products and services of any companies mentioned above, including for example specialist journals and books, events and fairs as well as event-related products and services, print and digital media offers and services such as additional (editorial) newsletters, raffles, lead campaigns, market research both online and offline, specialist webportals and e-learning offers. In case my personal telephone number has also been collected, it may be used for offers of aforementioned products, for services of the companies mentioned above, and market research purposes.
Additionally, my consent also includes the processing of my email address and telephone number for data matching for marketing purposes with select advertising partners such as LinkedIn, Google, and Meta. For this, Vogel Communications Group may transmit said data in hashed form to the advertising partners who then use said data to determine whether I am also a member of the mentioned advertising partner portals. Vogel Communications Group uses this feature for the purposes of re-targeting (up-selling, cross-selling, and customer loyalty), generating so-called look-alike audiences for acquisition of new customers, and as basis for exclusion for on-going advertising campaigns. Further information can be found in section “data matching for marketing purposes”.
In case I access protected data on Internet portals of Vogel Communications Group including any affiliated companies according to §§ 15 et seq. AktG, I need to provide further data in order to register for the access to such content. In return for this free access to editorial content, my data may be used in accordance with this consent for the purposes stated here. This does not apply to data matching for marketing purposes.
Right of revocation
I understand that I can revoke my consent at will. My revocation does not change the lawfulness of data processing that was conducted based on my consent leading up to my revocation. One option to declare my revocation is to use the contact form found at https://contact.vogel.de. In case I no longer wish to receive certain newsletters, I have subscribed to, I can also click on the unsubscribe link included at the end of a newsletter. Further information regarding my right of revocation and the implementation of it as well as the consequences of my revocation can be found in the data protection declaration, section editorial newsletter.
The "Guideline Compliance Summary" documents the degree of conformity with each individual guideline.
Furthermore, the compliance document recommends a complete procedure for handling deviations, which includes requirements for recording deviations, the use of deviation permits, and a list of reasons for which deviations are permissible.
The Parasoft MISRA C2023 Compliance Report.
(Image:Parasoft)
Standardized requirements to confirm the MISRA conformity of projects help companies to ensure an appropriate level of confidence and to combine conformity reports when multiple modules supplied by contractors are integrated. Prerequisite: A MISRA C/C++ code review has been carried out for each of these modules.
Some of the guidelines can be verified using the code review process, even though it is labor-intensive. Others, especially those that require analysis of the entire system, including guidelines that necessitate data and control flow analysis of the entire application source code, cannot practically be checked manually. Therefore, it is important to use automated static code analysis tools like Parasoft C/C++Test. These tools offer full support for MISRA C++:2023, analyzing the code against the appropriate guidelines and creating the relevant conformity documents.
With the Compliance Dashboard as part of the reporting, developers and management get a quick overview of the software's conformity.
(Image:Parasoft)
MISRA C++:2023 and secure software
MISRA C++ aims to provide a safe subset of the C++ language. This is achieved through various requirements and restrictions on the C++ source code to improve the safety of applications.
Error avoidance
The C++ Standard specifies certain situations as undefined behavior, mainly to allow compilers to generate more efficient code. Compilers are allowed to assume that the situation of undefined behavior never occurs and make additional optimizations based on this assumption. This carries the risk of the program's behavior being unpredictable if the situation arises. And in some cases, this means that the program behaves correctly during test execution but fails in production, which can render the entire verification process meaningless. MISRA C++ provides guidelines that directly or indirectly protect against undefined behavior. An example of this is the evaluation of the indeterminate value of an object, which is prevented by "Rule 11.6.2 An object’s value shall not be read before it has been set."
Maintainability of the code
Certain aspects of the abstract machine are described in the C++ standard as implementation-defined. This means that the behavior of the code is well-defined. It must be documented, however, that it can vary from implementation to implementation.
However, it is not easy to port such a program to another target.
An example of such behavior is sizeof(int), which affects the behavior of arithmetic calculations. For instance, all operands with narrower types are promoted before the actual arithmetic operation. This can lead to different results of the arithmetic operation, depending on the compilation target. The MISRA C++ guidelines avoid such problems with their standard conversion rules.
Risk management
The MISRA guidelines also address a number of potential risks that can arise from confusion or misunderstanding by the developer about valid C++ source code. For example, the code if (x = y) is valid C++ code, but most likely the result of a typing error where the assignment operator was used accidentally instead of the equality operator. The "Rule 8.18.2 The result of an assignment operator shall not be used" ensures that such code is reported and checked for correctness.
Conclusion
The use of sensible programming guidelines and a safe language subset is not without reason required by the standards for functional safety. Companies that can demonstrate compliance with MISRA C++:2023 improve the safety of their C++ applications. (se)
:quality(80)/p7i.vogel.de/wcms/72/a0/72a0ffc94f0929c8b193b4bc40638d72/0129755066v1.jpeg "Tens of billions less! After Ford and General Motors, Stellantis is now also feeling the painful consequences of Donald Trump's decision to change its electric car strategy ... (Image:Stellantis)")
:quality(80)/p7i.vogel.de/wcms/7f/fd/7ffd32863352c40f562f4245e4766e61/0129745849v1.jpeg "After US President Donald Trump once again resorted to his favorite weapon, tariffs, concerns rose in the EU that the so-called tariff deal could become invalid. But it looks as if the sea remains relatively calm ... (Image:F. Schneidler)")
:quality(80)/p7i.vogel.de/wcms/53/69/5369bed136061188d873441dfefd6d6e/0129245111v1.jpeg "The company revised the factory layout even though construction work had already begun. (Image:Efeso Management Consultants)")
:quality(80)/p7i.vogel.de/wcms/d2/d7/d2d79e3fb84663cb7e918c88f123989b/0129733908v1.jpeg "Mineral decision! This is how lithium is mined. There is a lot of it in Chile, Australia, Bolivia and also in Zimbabwe. However, the latter country has now announced that the export of all minerals, including lithium concentrate, will be stopped. Read more about the reasons here ... (Image:Largbatt)")
:quality(80)/p7i.vogel.de/wcms/d9/bd/d9bd1bfa7d02f586e092f06c61ee3d9a/0129464423v1.jpeg "This is what the Black Soldier Fly (BSF) looks like. The first impression is of a common two-winged insect. But appearances are deceptive, because its larvae are true protein reactors, whose industriousness is now to be exploited for food ... (Image:Fly Friends)")
:quality(80)/p7i.vogel.de/wcms/13/4d/134dee0c2b8af6b4f28937ca5b586e0d/0129499541v1.jpeg "The industry now needs to build a flexible, powerful and sovereign infrastructure that can exploit the full potential of artificial intelligence while guaranteeing control over data and processes. (Picture: ©Gorodenkoff - stock.adobe.com)")
:quality(80)/p7i.vogel.de/wcms/c6/71/c671ce338f12be49d39d1b04b40a54f7/0129697443v1.jpeg "Claas is working on making its combine harvesters fit for refurbishment. (Image:Claas)")
:quality(80)/p7i.vogel.de/wcms/f2/4b/f24b8f1c3070e7f13e4f0ffd7854e75a/0129653538v1.jpeg "The production of the BMW iX3 is to be taken as far as possible in terms of sustainability. This is also ensured by the climate-friendly Blueprint recycled steel from Thyssenkrupp Steel ... (Image:BMW)")
:quality(80)/p7i.vogel.de/wcms/f5/7e/f57ef535ee35e7b3b7ff15a8a63cef10/eds-keyvisual-8000x4496v1.jpeg "(Source: European Defence Supply)")
:quality(80)/p7i.vogel.de/wcms/af/a3/afa312176d956068af20491957eef642/newsimage418262-3100x1745v1v1.jpeg "The autonomous shuttle of the Aula AI project during a demonstration of sensor data with artificial fog. (Image:University of Magdeburg)")
:quality(80)/p7i.vogel.de/wcms/84/2d/842d51915fa4fe69c72da5cc4ba52ed1/newsimage418103-3408x1917v1v1.jpeg "3 Printing can also be sustainable—if recyclable ink is used. (Image:Hereon/Steffen Niemann)")
:quality(80)/p7i.vogel.de/wcms/b0/78/b078e07634ffd4d5ee6b73af42cc7c55/newsimage418259-1000x563v1v1.jpeg "Magnesium during forming. (Image:TU Bergakademie Freiberg)")
:quality(80)/p7i.vogel.de/wcms/c7/5e/c75e5942cd1d7e6bce973391af6dafe8/0129757614v1.jpeg "Pony.ai is cooperating with Moore Threads to bring Level 4 autonomous driving to the roads in China more quickly. (Image:Pony.ai)")
:quality(80)/p7i.vogel.de/wcms/a8/9f/a89ff7a3e28a19c03a22fd16cf3404b4/0129761837v1.jpeg "KD and Hitachi High-Tech have concluded a distribution agreement. (Image:KD)")
:quality(80)/p7i.vogel.de/wcms/29/b5/29b536a22d9b5ac80387b02620cce554/20260212-sue-60-6000x3372v1v1.jpeg "The People Mover at its world premiere. The large polycarbonate windshield is clearly visible. One of several materials contributed by Covestro. (Image:UE | STUDIOS)")
:quality(80)/p7i.vogel.de/wcms/a0/3e/a03e71cec3a956df095607a0b176a7b0/0129584071v1.jpeg "Andreas Mindt will be Head of Design at the Volkswagen Group from March. (Image:Volkswagen AG)")
:quality(80)/p7i.vogel.de/wcms/eb/4e/eb4e449562174ec95a5b3d30fb0137a2/0129648135v1.jpeg "The III-V germanium PV module with an efficiency of 34.2% is currently the most efficient solar module in the world. (Image:Jacob Forster)")
:quality(80)/p7i.vogel.de/wcms/92/c2/92c23fd5d95286c8c8c634314f6b22f8/0129722027v1.jpeg "The Meta Group has signed a five-year contract for GPU and CPU deliveries to expand its AI capacities. The agreement covers the delivery of up to 6 gigawatts of GPU computing power with a total value of around USD 60 billion. (Image:freely licensed)")
:quality(80)/p7i.vogel.de/wcms/01/77/017742db7d5eb5964c297bb8917df701/0129696639v1.jpeg "Mini-STX K3921-N: The motherboard masters Intel's Core i3 and N-Series processors and can connect multiple monitors with Full HD. (Image:Kontron)")
:quality(80)/p7i.vogel.de/wcms/17/21/1721b98b7580a86c7790f607395878a1/0129697493v1.jpeg "Universal: Motors are used everywhere. (Image:Microchip Technology)")
:fill(fff,0)/p7i.vogel.de/companies/67/eb/67eba621ef6ea/logo2.png "logo2 (Wuxi InfiMotion)"){kind=logo}
:quality(80)/p7i.vogel.de/wcms/33/de/33de340215c08658a4a382b3bda9c75b/0117127855.jpeg "The youngest offspring of the MISRA standard is MISRA C++:2023.(Image: Parasoft)")
:quality(80)/p7i.vogel.de/wcms/17/80/1780a7747b86475f268e0c1d3bc89b48/0117127880.jpeg "The Parasoft MISRA C2023 Guideline Enforcement Plan.(Image: Parasoft)")
:quality(80)/p7i.vogel.de/wcms/d8/d8/d8d8bddb1d150ba2255d48c04b0c9e50/0117127898.jpeg "The Parasoft MISRA C2023 Compliance Report.(Image: Parasoft)")
:quality(80)/p7i.vogel.de/wcms/65/8b/658b96877e707c06c045f5af5cc95e0e/0117128054.jpeg "With the Compliance Dashboard as part of the reporting, developers and management get a quick overview of the software's conformity.(Image: Parasoft)")
:quality(80)/p7i.vogel.de/wcms/88/c0/88c0efef674e9a92a9438c4ca87232b4/0127890201v1.jpeg "A large number of different programming languages are used in the development of software for the automotive sector. But which language is best suited to meet the stringent requirements of cybersecurity? (Image:freely licensed)")
:quality(80)/p7i.vogel.de/wcms/f7/b5/f7b56098f5ba7fc7329900d52758cbc9/0126780481v1.jpeg "Partnership between Ribbit and Parasoft: The tools Parasoft C/C++test and C/C++test CT enable agile software processes with 95 percent test coverage through CI pipelines and ensure 100 percent compliance with MISRA and JSF. (Image:Ribbit)")