Secure Coding mailing list archives
Darkreading: Secure Coding Certification
From: ljknews at mac.com (ljknews)
Date: Mon, 14 May 2007 13:49:11 -0400
At 11:35 AM -0400 5/14/07, Greg Beeley wrote:
Agreed in concept to the "no second-class citizens" idea. But I think the test needs to have a language-specific element to it. Every language and environment has unique pitfalls and security considerations. A developer who knows to avoid memory management, buffer, and integer issues in C may have no clue about nul-poisoning in a web scripting language's counted (as opposed to zero-terminated) strings.
And they may have no need for that. -- Larry Kilgallen
Current thread:
- Darkreading: Secure Coding Certification, (continued)
- Darkreading: Secure Coding Certification McGovern, James F (HTSC, IT) (May 21)
- Tools: Evaluation Criteria McGovern, James F (HTSC, IT) (May 22)
- Tools: Evaluation Criteria Steven M. Christey (May 22)
- Tools: Evaluation Criteria McGovern, James F (HTSC, IT) (May 23)
- Darkreading: Secure Coding Certification pmeunier (May 15)
- Darkreading: Secure Coding Certification Steven M. Christey (May 14)
- Darkreading: Secure Coding Certification Greg Beeley (May 14)
- Darkreading: Secure Coding Certification ljknews (May 14)
- Darkreading: Secure Coding Certification Steven M. Christey (May 14)
- Darkreading: Secure Coding Certification ljknews (May 14)
- Darkreading: Secure Coding Certification McGovern, James F (HTSC, IT) (May 16)