search menu icon-carat-right cmu-wordmark

Establishing Coding Requirements for Non-Safety-Critical C++ Systems

November 2016 Presentation
Contributor Aaron Ballman

Developed checkers, rules, and rule organization for secure C++ code

Publisher:

Software Engineering Institute

Abstract

C++ is used extensively throughout the DoD, including major weapons systems such as the Joint Strike Fighter. Existing C++ coding standards fail to address security, subset the language (e.g., MISRA C++: 2008) or are outdated and unprofessional (e.g., C++ Coding Standard referenced in DISA’s Application Security and Development STIG).