Title :
Secure coding in C and C++ of strings and integers
Author_Institution :
Inst. of Software Eng., Carnegie Mellon Univ., Pittsburgh, PA, USA
Abstract :
Although the flexibility and performance of C and C++ aren´t in question, security has increasingly become an issue. The C and C++ communities have recognized this and have taken steps to improve security at all levels, including improved standards, compiler implementations, and static and runtime analysis tools.
Keywords :
C++ language; data structures; program compilers; program diagnostics; security of data; software standards; C language; C++ language; compiler implementations; integer data type; runtime analysis tools; secure coding; standards; static analysis tools; string data type; Buffer overflow; Computer errors; Computer languages; Computer security; IEC standards; ISO standards; Privacy; Runtime; Software libraries; Software tools; C; C++; programming language security; secure development;
Journal_Title :
Security & Privacy, IEEE
DOI :
10.1109/MSP.2006.22
