December/January 2015 Edition of the Secure Coding Newsletter
January 2016 • Newsletter
The CERT Secure Coding Team discusses its major development work on the CERT C++ Coding Standard and the DidFail tool, a static taint flow analyzer.
Publisher:
Software Engineering Institute
Abstract
In the December/January 2015 edition of the newsletter, the team describes its continuing effort to develop CERT C++ Coding Standard and its work in reorganizing the Java Coding Guidelines and the CERT Oracle Coding Standard for Java to make them easier to navigate.
The team is also significantly enhancing DidFail, a static taint flow analyzer for sets of Android apps.