CERT C Coding Standard: 98 Rules for Developing Safe, Reliable, and Secure Systems.

For those interested in secure coding, Robert Seacord of CERT is one of the main sources on the topic.  Some of the notable books he has authored are:

Seacord’s latest is the CERT C Coding Standard: 98 Rules for Developing Safe, Reliable, and Secure Systems.

cbook

The book covers the entire core areas that every C programmer needs to know, including areas such as:

  • characters and strings
  • expressions
  • integers
  • floating point
  • arrays
  • memory management
  • input/output
  • declarations and initialization
  • error handling
  • concurrency

 The rules in the book can be used in parallel to ensure code is C11 (ISO/IEC 9899:2011) compliant.

Each of the rules in the book has the same format: title, description, noncompliant code examples and compliant solutions. 

Programmers that implement these coding standards will find short-term gains in that the coding mistakes that leads to critical application errors such as buffer overflows are now mitigated. 

This book is meant as a desktop reference for those coding in C.  If you have programmers coding in C, you want to ensure that this book is on their desktop,

The goal of the book and its rules is meant to develop safe, reliable, and secure systems.  Anyone who wants to do that should read definitely be reading CERT C Coding Standard: 98 Rules for Developing Safe, Reliable, and Secure Systems.

0321984048
978-0321984043

← View more Blogs

This document was retrieved from http://www.rsaconference.com/blogs/622/rothke/cert-c-coding-standard-98-rules-for-developing-safe-reliable-and-secure-systems on Wed, 24 Sep 2014 00:27:29 -0400.
© 2014 EMC Corporation. All rights reserved.