The CERT® C Coding Standard, Second Edition

The CERT® C Coding Standard, Second Edition
Author :
Publisher : Addison-Wesley Professional
Total Pages : 568
Release :
ISBN-10 : 9780133805291
ISBN-13 : 0133805298
Rating : 4/5 (91 Downloads)

Book Synopsis The CERT® C Coding Standard, Second Edition by : Robert C. Seacord

Download or read book The CERT® C Coding Standard, Second Edition written by Robert C. Seacord and published by Addison-Wesley Professional. This book was released on 2014-04-25 with total page 568 pages. Available in PDF, EPUB and Kindle. Book excerpt: “At Cisco, we have adopted the CERT C Coding Standard as the internal secure coding standard for all C developers. It is a core component of our secure development lifecycle. The coding standard described in this book breaks down complex software security topics into easy-to-follow rules with excellent real-world examples. It is an essential reference for any developer who wishes to write secure and resilient software in C and C++.” —Edward D. Paradise, vice president, engineering, threat response, intelligence, and development, Cisco Systems Secure programming in C can be more difficult than even many experienced programmers realize. To help programmers write more secure code, The CERT® C Coding Standard, Second Edition, fully documents the second official release of the CERT standard for secure coding in C. The rules laid forth in this new edition will help ensure that programmers’ code fully complies with the new C11 standard; it also addresses earlier versions, including C99. The new standard itemizes those coding errors that are the root causes of current software vulnerabilities in C, prioritizing them by severity, likelihood of exploitation, and remediation costs. Each of the text’s 98 guidelines includes examples of insecure code as well as secure, C11-conforming, alternative implementations. If uniformly applied, these guidelines will eliminate critical coding errors that lead to buffer overflows, format-string vulnerabilities, integer overflow, and other common vulnerabilities. This book reflects numerous experts’ contributions to the open development and review of the rules and recommendations that comprise this standard. Coverage includes Preprocessor Declarations and Initialization Expressions Integers Floating Point Arrays Characters and Strings Memory Management Input/Output Environment Signals Error Handling Concurrency Miscellaneous Issues


The CERT® C Coding Standard, Second Edition Related Books

The CERT® C Coding Standard, Second Edition
Language: en
Pages: 568
Authors: Robert C. Seacord
Categories: Computers
Type: BOOK - Published: 2014-04-25 - Publisher: Addison-Wesley Professional

DOWNLOAD EBOOK

“At Cisco, we have adopted the CERT C Coding Standard as the internal secure coding standard for all C developers. It is a core component of our secure develo
The CERT C Coding Standard
Language: en
Pages: 568
Authors: Robert C. Seacord
Categories: Computers
Type: BOOK - Published: 2014 - Publisher: Pearson Education

DOWNLOAD EBOOK

This book is an essential desktop reference for the CERT C coding standard. The CERT C Coding Standard is an indispensable collection of expert information. The
The CERT C Secure Coding Standard
Language: en
Pages: 0
Authors: Robert C. Seacord
Categories: C (Computer program language).
Type: BOOK - Published: 2009 - Publisher: Addison-Wesley Professional

DOWNLOAD EBOOK

"I'm an enthusiastic supporter of the CERT Secure Coding Initiative. Programmers have lots of sources of advice on correctness, clarity, maintainability, perfor
Effective C
Language: en
Pages: 273
Authors: Robert C. Seacord
Categories: Computers
Type: BOOK - Published: 2020-08-11 - Publisher: No Starch Press

DOWNLOAD EBOOK

A detailed introduction to the C programming language for experienced programmers. The world runs on code written in the C programming language, yet most school
The CERT Oracle Secure Coding Standard for Java
Language: en
Pages: 739
Authors: Fred Long
Categories: Computers
Type: BOOK - Published: 2012 - Publisher: Addison-Wesley Professional

DOWNLOAD EBOOK

"In the Java world, security is not viewed as an add-on a feature. It is a pervasive way of thinking. Those who forget to think in a secure mindset end up in tr