Software Engineering Institute | Carnegie Mellon University
Software Engineering Institute | Carnegie Mellon University

Digital Library

Javascript is currently disabled for your browser. For an optimal search experience, please enable javascript.

Advanced Search

Basic Search

Content Type

Topics

Publication Date

Showing 1 - 9 of 9 results for the Publish Year - 2010 Secure Coding

Technical Report | December 2010 - Technical Report Source Code Analysis Laboratory (SCALe) for Energy ... By Robert C. Seacord, Will Dormann, James McCurley, Philip Miller, Robert W. Stoddard, David Svoboda, Jefferson Welch

In this report, the authors describe the Source Code Analysis Laboratory (SCALe), which tests software for conformance to CERT secure coding standards.

White Paper | February 2010 - White Paper MITRE, CWE, and CERT Secure Coding Standards By Robert C. Seacord, Robert A. Martin

In this paper, the authors summarize the Common Weakness Enumeration (CWE) and CERT Secure Coding Standards and the relationship between the two.

Presentation | January 2010 - Presentation Secure Coding Initiative By Robert C. Seacord

In this 2010 presentation, Robert Seacord provides an overview of the Secure Coding Initiative of the CERT Division, Software Engineering Institute.

Technical Report | May 2010 - Technical Report Java Concurrency Guidelines By Fred Long, Dhruv Mohindra, Robert C. Seacord, David Svoboda

In this report, the authors describe the CERT Oracle Secure Coding Standard for Java, which provides guidelines for secure coding in Java.

Technical Report | May 2010 - Technical Report Specifications for Managed Strings, Second Edition By Hal Burch, Fred Long, Raunak Rungta, Robert C. Seacord, David Svoboda

In this report, the authors describe a managed string library for the C programming language.

Presentation | November 2010 - Presentation As-If Infinitely Ranged Integer Model By Roger Dannenberg (School of Computer Science - Carnegie Mellon University), Thomas Plum (Plum Hall - Inc.), Will Dormann, David Keaton, Robert C. Seacord, David Svoboda, Alex Volkovitsky, Timothy Wilson

This ISSRE 2010 paper describes the AIR Integer model for eliminating vulnerabilities resulting from integer overflow, truncation, and unanticipated wrapping.

Technical Note | April 2010 - Technical Note As-If Infinitely Ranged Integer Model, Second Edition By Roger Dannenberg (School of Computer Science - Carnegie Mellon University), Will Dormann, David Keaton, Thomas Plum (Plum Hall - Inc.), Robert C. Seacord, David Svoboda, Alex Volkovitsky, Timothy Wilson

In this report, the authors present the as-if infinitely ranged (AIR) integer model, a mechanism for eliminating integral exceptional conditions.

Presentation | February 2010 - Presentation Instrumented Fuzz Testing Using AIR Integers (Presentation) By Will Dormann, Robert C. Seacord

In this February 2010 presentation, Will Dormann and Robert Seacord describe how to conduct instrumented fuzz testing using as-if infinitely ranged integers.

White Paper | February 2010 - White Paper Instrumented Fuzz Testing Using AIR Integers (Whitepaper) By Roger Dannenberg (School of Computer Science - Carnegie Mellon University), Will Dormann, David Keaton, Robert C. Seacord, Timothy Wilson, Thomas Plum (Plum Hall - Inc.)

In this paper, the authors present the as-if infinitely ranged (AIR) integer model, which provides a mechanism for eliminating integral exceptional conditions.