Software Engineering Institute | Carnegie Mellon University
Software Engineering Institute | Carnegie Mellon University

Digital Library

Javascript is currently disabled for your browser. For an optimal search experience, please enable javascript.

Advanced Search

Basic Search

Content Type

Topics

Publication Date

Showing 1 - 10 of 11 results for the Type - white paper Secure Coding

White Paper | February 2010 - White Paper MITRE, CWE, and CERT Secure Coding Standards By Robert C. Seacord, Robert A. Martin

In this paper, the authors summarize the Common Weakness Enumeration (CWE) and CERT Secure Coding Standards and the relationship between the two.

White Paper | December 2009 - White Paper Secure Coding Governance and Guidance

In this paper, the authors propose the use of secure coding standards in the development of software for surface combatants and submarines.

White Paper | June 2013 - White Paper Pointer Ownership Model By David Svoboda

In this paper, David Svoboda describes the Pointer Ownership Model, which can statically identify classes of errors involving dynamic memory in C/C++ programs.

White Paper | June 2011 - White Paper An Online Learning Approach to Information Systems Security ... By Norman Bier (Carnegie Mellon University), Marsha Lovett (Carnegie Mellon University), Robert C. Seacord

In this paper, the authors describe the development of a secure coding module that shows how to capture content, ensure learning, and scale to meet demand.

White Paper | December 2009 - White Paper Secure Coding Plan

This plan is a government-provided customizable document that is part of the acquisition's government reference library.

White Paper | February 2010 - White Paper Instrumented Fuzz Testing Using AIR Integers (Whitepaper) By Roger Dannenberg (School of Computer Science - Carnegie Mellon University), Will Dormann, David Keaton, Robert C. Seacord, Timothy Wilson, Thomas Plum (Plum Hall - Inc.)

In this paper, the authors present the as-if infinitely ranged (AIR) integer model, which provides a mechanism for eliminating integral exceptional conditions.

White Paper | May 2014 - White Paper Precise Static Analysis of Taint Flow for Android Application ... By Amar S. Bhosale (No Affiliation)

This thesis describes a static taint analysis for Android that combines the FlowDroid and Epicc analyses to track inter- and intra-component data flow.

White Paper | April 2015 - White Paper SCALe Analysis of JasPer Codebase By David Svoboda

In this paper, David Svoboda provides the findings of a SCALe audit on a codebase.

White Paper | May 2013 - White Paper Strengths in Security Solutions By Arjuna Shunn (Microsoft), Carol Woody, Robert C. Seacord, Allen D. Householder

In this white paper, the authors map eight CERT tools, services, and processes to Microsoft's Simplified Security Development Lifecycle.

White Paper | August 2005 - White Paper Information Technology: Programming Languages, Their ... By Fred Long, Robert C. Seacord

In this paper, the authors present a standard specification for managed strings.