Fix it - don't nix it [C security]

Author(s): C. Tapp
DOI: 10.1049/et.2009.1811

For access to this article, please select a purchase option:

Buy article PDF

Buy Knowledge Pack

IET members benefit from discounts to all IET publications and free access to E&T Magazine. If you are an IET member, log in to your account and the discounts will automatically be applied.

Learn more about IET membership

Recommend Title Publication to library

Engineering & Technology — Recommend this title to your library

Thank you

Your recommendation has been sent to your librarian.

Author(s): C. Tapp
Source: Volume 4, Issue 18, 24 October 2009, p. 58 – 59
DOI: 10.1049/et.2009.1811 , Print ISSN 1750-9637, Online ISSN 1750-9645

The article discusses the security in C programming language. Critics claim that the decades-old C programming language is inherently insecure. The author disagrees. Programmers just have to use security tools to fix software vulnerabilities.Research in recent years has identified the root cause of many of the vulnerabilities typically found in C/C++ code. Coding standards such as the CERT C Secure Coding Standard help programmers avoid the associated pitfalls. However, without automated tools to check for non-compliance, it is, arguably, more or less impossible for a programmer to deliver fault-free code. Software analysis tools for static code analysis are available to enforce compliance with the guidelines recommended by these established coding standards. They can perform in-depth, systemwide analysis of the code, and can utilise formal methods to ensure that system security is not compromised. Software tools enforce compliance with the guidelines recommended by established coding standards.

Fix it - don't nix it [C security]

Fix it - don't nix it [C security]

Buy article PDF

Buy Knowledge Pack

Thank you

Related content