Secure Coding Standards

March 1, 2007 • Article

By

James W. Moore (IBM Systems Integration Division) and Robert C. Seacord

This CrossTalk article outlines efforts by the ISO/IEC and the CERT Division to develop secure coding practices for the C and C++ programming languages.

Publisher

CrossTalk

Subjects

Secure Coding Secure Development

Abstract

Inherent weaknesses in programming languages contribute to software vulnerabilities. Increasingly, organizations are producing standards to improve software security. In this CrossTalk article, James Moore and Robert Seacord provide an overview of current efforts to develop software security standards, and they describe two such efforts in detail.

Software Engineering Institute