search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Winter 2015 Edition of the Secure Coding Newsletter

Newsletter
The CERT Secure Coding Team announces new sections, New Clang Checkers, developed for the CERT C and C++ Coding Standards.
Publisher

Software Engineering Institute

Abstract

In the Winter Edition 2015 edition of the newsletter, the team announces that the Clang community accepted the revision—submitted by Secure Coding Team member Aaron Ballman—to clang-tidy to allow CERT checkers by name. Resulting from this work are new sections for the CERT C and C++ Coding Standards. These new sections, New Clang Checkers, indicate rules that have new checkers in Clang that enforce them.

The team also describes its latest article, Smartphone Security, which was published in IEEE Pervasive Computing.  The newsletter also describes team member activities, such as

  • co-chairing the Mobile Development Lifecycle workshop at SPLASH 2015, coordinating the panel "Smartphone Security" and chairing Session I of the presentations
  • attending the C Standards Committee meeting, where it was decided to publish a new edition of the C Secure Coding Rules, ISO/IEC TS 17961:2013
  • attending the C++ Standards Committee (ISO/IEC JTC 1/SC 22/WG 21) meeting and reviewing core C++ language for the anticipated release of C++17
  • presenting a half-day Secure Coding tutorial at the SEI’s Software Solutions Conference (Software Solutions Conference)

SHARE
Download PDF
Part of a Collection

Secure Coding Newsletter Collection
Ask a question about this Newsletter