Verfügbarkeit: The CERT C coding standard | Technische Universität München

The CERT C coding standard: 98 rules for developing safe, reliable, and secure systems

"At Cisco, we have adopted the CERT C Coding Standard as the internal secure coding standard for all C developers. It is a core component of our secure development lifecycle. The coding standard described in this book breaks down complex software security topics into easy-to-follow rules with e...

Ausführliche Beschreibung

Gespeichert in:

Bibliographische Detailangaben
Beteilige Person:	Seacord, Robert C. (VerfasserIn)
Format:	Elektronisch E-Book
Sprache:	Englisch
Veröffentlicht:	Upper Saddle River, NJ Addison-Wesley 2014
Ausgabe:	2nd ed.
Schriftenreihe:	The SEI series in software engineering
Schlagwörter:	C (Computer program language) Computer programming > Standards C (Langage de programmation) Programmation (Informatique) ; Normes COMPUTERS ; Programming Languages ; C COMPUTERS ; Programming ; General Computer programming ; Standards
Links:	https://learning.oreilly.com/library/view/-/9780133812275/?ar
Zusammenfassung:	"At Cisco, we have adopted the CERT C Coding Standard as the internal secure coding standard for all C developers. It is a core component of our secure development lifecycle. The coding standard described in this book breaks down complex software security topics into easy-to-follow rules with excellent real-world examples. It is an essential reference for any developer who wishes to write secure and resilient software in C and C++."--Edward D. Paradise, vice president, engineering, threat response, intelligence, and development, Cisco Systems Secure programming in C can be more difficult than even many experienced programmers realize. To help programmers write more secure code, The CERT® C Coding Standard, Second Edition, fully documents the second official release of the CERT standard for secure coding in C. The rules laid forth in this new edition will help ensure that programmers' code fully complies with the new C11 standard; it also addresses earlier versions, including C99. The new standard itemizes those coding errors that are the root causes of current software vulnerabilities in C, prioritizing them by severity, likelihood of exploitation, and remediation costs. Each of the text's 98 guidelines includes examples of insecure code as well as secure, C11-conforming, alternative implementations. If uniformly applied, these guidelines will eliminate critical coding errors that lead to buffer overflows, format-string vulnerabilities, integer overflow, and other common vulnerabilities. This book reflects numerous experts' contributions to the open development and review of the rules and recommendations that comprise this standard. Coverage includes Preprocessor Declarations and Initialization Expressions Integers Floating Point Arrays Characters and Strings Memory Management Input/Output Environment Signals Error Handling Concurrency Miscellaneous Issues
Beschreibung:	Includes bibliographical references and index. - Online resource; title from PDF title page (EBSCO, viewed January 16, 2018)
Umfang:	1 Online-Ressource (1 volume) illustrations
ISBN:	9780133805277 0133805271 9780133805291 0133805298 9780133812275

Internformat

MARC


LEADER	00000cam a22000002 4500
001	ZDB-30-ORH-047437847
003	DE-627-1
005	20240228115554.0
007	cr uuu---uuuuu
008	191023s2014 xx \|\|\|\|\|o 00\| \|\|eng c
020			\|a 9780133805277 \|c electronic bk. \|9 978-0-13-380527-7
020			\|a 0133805271 \|c electronic bk. \|9 0-13-380527-1
020			\|a 9780133805291 \|c electronic bk. \|9 978-0-13-380529-1
020			\|a 0133805298 \|c electronic bk. \|9 0-13-380529-8
020			\|a 9780133812275 \|9 978-0-13-381227-5
035			\|a (DE-627-1)047437847
035			\|a (DE-599)KEP047437847
035			\|a (ORHE)9780133812275
035			\|a (DE-627-1)047437847
040			\|a DE-627 \|b ger \|c DE-627 \|e rda
041			\|a eng
072		7	\|a COM \|2 bisacsh
072		7	\|a COM \|2 bisacsh
082	0		\|a 005.13/3 \|2 23
100	1		\|a Seacord, Robert C. \|e VerfasserIn \|4 aut
245	1	4	\|a The CERT C coding standard \|b 98 rules for developing safe, reliable, and secure systems \|c Robert C. Seacord
250			\|a 2nd ed.
264		1	\|a Upper Saddle River, NJ \|b Addison-Wesley \|c 2014
300			\|a 1 Online-Ressource (1 volume) \|b illustrations
336			\|a Text \|b txt \|2 rdacontent
337			\|a Computermedien \|b c \|2 rdamedia
338			\|a Online-Ressource \|b cr \|2 rdacarrier
490	0		\|a The SEI series in software engineering
500			\|a Includes bibliographical references and index. - Online resource; title from PDF title page (EBSCO, viewed January 16, 2018)
520			\|a "At Cisco, we have adopted the CERT C Coding Standard as the internal secure coding standard for all C developers. It is a core component of our secure development lifecycle. The coding standard described in this book breaks down complex software security topics into easy-to-follow rules with excellent real-world examples. It is an essential reference for any developer who wishes to write secure and resilient software in C and C++."--Edward D. Paradise, vice president, engineering, threat response, intelligence, and development, Cisco Systems Secure programming in C can be more difficult than even many experienced programmers realize. To help programmers write more secure code, The CERT® C Coding Standard, Second Edition, fully documents the second official release of the CERT standard for secure coding in C. The rules laid forth in this new edition will help ensure that programmers' code fully complies with the new C11 standard; it also addresses earlier versions, including C99. The new standard itemizes those coding errors that are the root causes of current software vulnerabilities in C, prioritizing them by severity, likelihood of exploitation, and remediation costs. Each of the text's 98 guidelines includes examples of insecure code as well as secure, C11-conforming, alternative implementations. If uniformly applied, these guidelines will eliminate critical coding errors that lead to buffer overflows, format-string vulnerabilities, integer overflow, and other common vulnerabilities. This book reflects numerous experts' contributions to the open development and review of the rules and recommendations that comprise this standard. Coverage includes Preprocessor Declarations and Initialization Expressions Integers Floating Point Arrays Characters and Strings Memory Management Input/Output Environment Signals Error Handling Concurrency Miscellaneous Issues
650		0	\|a C (Computer program language)
650		0	\|a Computer programming \|x Standards
650		4	\|a C (Langage de programmation)
650		4	\|a Programmation (Informatique) ; Normes
650		4	\|a COMPUTERS ; Programming Languages ; C
650		4	\|a COMPUTERS ; Programming ; General
650		4	\|a C (Computer program language)
650		4	\|a Computer programming ; Standards
966	4	0	\|l DE-91 \|p ZDB-30-ORH \|q TUM_PDA_ORH \|u https://learning.oreilly.com/library/view/-/9780133812275/?ar \|m X:ORHE \|x Aggregator \|z lizenzpflichtig \|3 Volltext
912			\|a ZDB-30-ORH
912			\|a ZDB-30-ORH
951			\|a BO
912			\|a ZDB-30-ORH
049			\|a DE-91

Datensatz im Suchindex

DE-BY-TUM_katkey	ZDB-30-ORH-047437847
_version_	1821494904482693120
adam_text
any_adam_object
author	Seacord, Robert C.
author_facet	Seacord, Robert C.
author_role	aut
author_sort	Seacord, Robert C.
author_variant	r c s rc rcs
building	Verbundindex
bvnumber	localTUM
collection	ZDB-30-ORH
ctrlnum	(DE-627-1)047437847 (DE-599)KEP047437847 (ORHE)9780133812275
dewey-full	005.13/3
dewey-hundreds	000 - Computer science, information, general works
dewey-ones	005 - Computer programming, programs, data, security
dewey-raw	005.13/3
dewey-search	005.13/3
dewey-sort	15.13 13
dewey-tens	000 - Computer science, information, general works
discipline	Informatik
edition	2nd ed.
format	Electronic eBook
fullrecord	<?xml version="1.0" encoding="UTF-8"?><collection xmlns="http://www.loc.gov/MARC21/slim"><record><leader>03900cam a22005292 4500</leader><controlfield tag="001">ZDB-30-ORH-047437847</controlfield><controlfield tag="003">DE-627-1</controlfield><controlfield tag="005">20240228115554.0</controlfield><controlfield tag="007">cr uuu---uuuuu</controlfield><controlfield tag="008">191023s2014 xx \|\|\|\|\|o 00\| \|\|eng c</controlfield><datafield tag="020" ind1=" " ind2=" "><subfield code="a">9780133805277</subfield><subfield code="c">electronic bk.</subfield><subfield code="9">978-0-13-380527-7</subfield></datafield><datafield tag="020" ind1=" " ind2=" "><subfield code="a">0133805271</subfield><subfield code="c">electronic bk.</subfield><subfield code="9">0-13-380527-1</subfield></datafield><datafield tag="020" ind1=" " ind2=" "><subfield code="a">9780133805291</subfield><subfield code="c">electronic bk.</subfield><subfield code="9">978-0-13-380529-1</subfield></datafield><datafield tag="020" ind1=" " ind2=" "><subfield code="a">0133805298</subfield><subfield code="c">electronic bk.</subfield><subfield code="9">0-13-380529-8</subfield></datafield><datafield tag="020" ind1=" " ind2=" "><subfield code="a">9780133812275</subfield><subfield code="9">978-0-13-381227-5</subfield></datafield><datafield tag="035" ind1=" " ind2=" "><subfield code="a">(DE-627-1)047437847</subfield></datafield><datafield tag="035" ind1=" " ind2=" "><subfield code="a">(DE-599)KEP047437847</subfield></datafield><datafield tag="035" ind1=" " ind2=" "><subfield code="a">(ORHE)9780133812275</subfield></datafield><datafield tag="035" ind1=" " ind2=" "><subfield code="a">(DE-627-1)047437847</subfield></datafield><datafield tag="040" ind1=" " ind2=" "><subfield code="a">DE-627</subfield><subfield code="b">ger</subfield><subfield code="c">DE-627</subfield><subfield code="e">rda</subfield></datafield><datafield tag="041" ind1=" " ind2=" "><subfield code="a">eng</subfield></datafield><datafield tag="072" ind1=" " ind2="7"><subfield code="a">COM</subfield><subfield code="2">bisacsh</subfield></datafield><datafield tag="072" ind1=" " ind2="7"><subfield code="a">COM</subfield><subfield code="2">bisacsh</subfield></datafield><datafield tag="082" ind1="0" ind2=" "><subfield code="a">005.13/3</subfield><subfield code="2">23</subfield></datafield><datafield tag="100" ind1="1" ind2=" "><subfield code="a">Seacord, Robert C.</subfield><subfield code="e">VerfasserIn</subfield><subfield code="4">aut</subfield></datafield><datafield tag="245" ind1="1" ind2="4"><subfield code="a">The CERT C coding standard</subfield><subfield code="b">98 rules for developing safe, reliable, and secure systems</subfield><subfield code="c">Robert C. Seacord</subfield></datafield><datafield tag="250" ind1=" " ind2=" "><subfield code="a">2nd ed.</subfield></datafield><datafield tag="264" ind1=" " ind2="1"><subfield code="a">Upper Saddle River, NJ</subfield><subfield code="b">Addison-Wesley</subfield><subfield code="c">2014</subfield></datafield><datafield tag="300" ind1=" " ind2=" "><subfield code="a">1 Online-Ressource (1 volume)</subfield><subfield code="b">illustrations</subfield></datafield><datafield tag="336" ind1=" " ind2=" "><subfield code="a">Text</subfield><subfield code="b">txt</subfield><subfield code="2">rdacontent</subfield></datafield><datafield tag="337" ind1=" " ind2=" "><subfield code="a">Computermedien</subfield><subfield code="b">c</subfield><subfield code="2">rdamedia</subfield></datafield><datafield tag="338" ind1=" " ind2=" "><subfield code="a">Online-Ressource</subfield><subfield code="b">cr</subfield><subfield code="2">rdacarrier</subfield></datafield><datafield tag="490" ind1="0" ind2=" "><subfield code="a">The SEI series in software engineering</subfield></datafield><datafield tag="500" ind1=" " ind2=" "><subfield code="a">Includes bibliographical references and index. - Online resource; title from PDF title page (EBSCO, viewed January 16, 2018)</subfield></datafield><datafield tag="520" ind1=" " ind2=" "><subfield code="a">"At Cisco, we have adopted the CERT C Coding Standard as the internal secure coding standard for all C developers. It is a core component of our secure development lifecycle. The coding standard described in this book breaks down complex software security topics into easy-to-follow rules with excellent real-world examples. It is an essential reference for any developer who wishes to write secure and resilient software in C and C++."--Edward D. Paradise, vice president, engineering, threat response, intelligence, and development, Cisco Systems Secure programming in C can be more difficult than even many experienced programmers realize. To help programmers write more secure code, The CERT® C Coding Standard, Second Edition, fully documents the second official release of the CERT standard for secure coding in C. The rules laid forth in this new edition will help ensure that programmers' code fully complies with the new C11 standard; it also addresses earlier versions, including C99. The new standard itemizes those coding errors that are the root causes of current software vulnerabilities in C, prioritizing them by severity, likelihood of exploitation, and remediation costs. Each of the text's 98 guidelines includes examples of insecure code as well as secure, C11-conforming, alternative implementations. If uniformly applied, these guidelines will eliminate critical coding errors that lead to buffer overflows, format-string vulnerabilities, integer overflow, and other common vulnerabilities. This book reflects numerous experts' contributions to the open development and review of the rules and recommendations that comprise this standard. Coverage includes Preprocessor Declarations and Initialization Expressions Integers Floating Point Arrays Characters and Strings Memory Management Input/Output Environment Signals Error Handling Concurrency Miscellaneous Issues</subfield></datafield><datafield tag="650" ind1=" " ind2="0"><subfield code="a">C (Computer program language)</subfield></datafield><datafield tag="650" ind1=" " ind2="0"><subfield code="a">Computer programming</subfield><subfield code="x">Standards</subfield></datafield><datafield tag="650" ind1=" " ind2="4"><subfield code="a">C (Langage de programmation)</subfield></datafield><datafield tag="650" ind1=" " ind2="4"><subfield code="a">Programmation (Informatique) ; Normes</subfield></datafield><datafield tag="650" ind1=" " ind2="4"><subfield code="a">COMPUTERS ; Programming Languages ; C</subfield></datafield><datafield tag="650" ind1=" " ind2="4"><subfield code="a">COMPUTERS ; Programming ; General</subfield></datafield><datafield tag="650" ind1=" " ind2="4"><subfield code="a">C (Computer program language)</subfield></datafield><datafield tag="650" ind1=" " ind2="4"><subfield code="a">Computer programming ; Standards</subfield></datafield><datafield tag="966" ind1="4" ind2="0"><subfield code="l">DE-91</subfield><subfield code="p">ZDB-30-ORH</subfield><subfield code="q">TUM_PDA_ORH</subfield><subfield code="u">https://learning.oreilly.com/library/view/-/9780133812275/?ar</subfield><subfield code="m">X:ORHE</subfield><subfield code="x">Aggregator</subfield><subfield code="z">lizenzpflichtig</subfield><subfield code="3">Volltext</subfield></datafield><datafield tag="912" ind1=" " ind2=" "><subfield code="a">ZDB-30-ORH</subfield></datafield><datafield tag="912" ind1=" " ind2=" "><subfield code="a">ZDB-30-ORH</subfield></datafield><datafield tag="951" ind1=" " ind2=" "><subfield code="a">BO</subfield></datafield><datafield tag="912" ind1=" " ind2=" "><subfield code="a">ZDB-30-ORH</subfield></datafield><datafield tag="049" ind1=" " ind2=" "><subfield code="a">DE-91</subfield></datafield></record></collection>
id	ZDB-30-ORH-047437847
illustrated	Illustrated
indexdate	2025-01-17T11:21:47Z
institution	BVB
isbn	9780133805277 0133805271 9780133805291 0133805298 9780133812275
language	English
open_access_boolean
owner	DE-91 DE-BY-TUM
owner_facet	DE-91 DE-BY-TUM
physical	1 Online-Ressource (1 volume) illustrations
psigel	ZDB-30-ORH TUM_PDA_ORH ZDB-30-ORH
publishDate	2014
publishDateSearch	2014
publishDateSort	2014
publisher	Addison-Wesley
record_format	marc
series2	The SEI series in software engineering
spelling	Seacord, Robert C. VerfasserIn aut The CERT C coding standard 98 rules for developing safe, reliable, and secure systems Robert C. Seacord 2nd ed. Upper Saddle River, NJ Addison-Wesley 2014 1 Online-Ressource (1 volume) illustrations Text txt rdacontent Computermedien c rdamedia Online-Ressource cr rdacarrier The SEI series in software engineering Includes bibliographical references and index. - Online resource; title from PDF title page (EBSCO, viewed January 16, 2018) "At Cisco, we have adopted the CERT C Coding Standard as the internal secure coding standard for all C developers. It is a core component of our secure development lifecycle. The coding standard described in this book breaks down complex software security topics into easy-to-follow rules with excellent real-world examples. It is an essential reference for any developer who wishes to write secure and resilient software in C and C++."--Edward D. Paradise, vice president, engineering, threat response, intelligence, and development, Cisco Systems Secure programming in C can be more difficult than even many experienced programmers realize. To help programmers write more secure code, The CERT® C Coding Standard, Second Edition, fully documents the second official release of the CERT standard for secure coding in C. The rules laid forth in this new edition will help ensure that programmers' code fully complies with the new C11 standard; it also addresses earlier versions, including C99. The new standard itemizes those coding errors that are the root causes of current software vulnerabilities in C, prioritizing them by severity, likelihood of exploitation, and remediation costs. Each of the text's 98 guidelines includes examples of insecure code as well as secure, C11-conforming, alternative implementations. If uniformly applied, these guidelines will eliminate critical coding errors that lead to buffer overflows, format-string vulnerabilities, integer overflow, and other common vulnerabilities. This book reflects numerous experts' contributions to the open development and review of the rules and recommendations that comprise this standard. Coverage includes Preprocessor Declarations and Initialization Expressions Integers Floating Point Arrays Characters and Strings Memory Management Input/Output Environment Signals Error Handling Concurrency Miscellaneous Issues C (Computer program language) Computer programming Standards C (Langage de programmation) Programmation (Informatique) ; Normes COMPUTERS ; Programming Languages ; C COMPUTERS ; Programming ; General Computer programming ; Standards
spellingShingle	Seacord, Robert C. The CERT C coding standard 98 rules for developing safe, reliable, and secure systems C (Computer program language) Computer programming Standards C (Langage de programmation) Programmation (Informatique) ; Normes COMPUTERS ; Programming Languages ; C COMPUTERS ; Programming ; General Computer programming ; Standards
title	The CERT C coding standard 98 rules for developing safe, reliable, and secure systems
title_auth	The CERT C coding standard 98 rules for developing safe, reliable, and secure systems
title_exact_search	The CERT C coding standard 98 rules for developing safe, reliable, and secure systems
title_full	The CERT C coding standard 98 rules for developing safe, reliable, and secure systems Robert C. Seacord
title_fullStr	The CERT C coding standard 98 rules for developing safe, reliable, and secure systems Robert C. Seacord
title_full_unstemmed	The CERT C coding standard 98 rules for developing safe, reliable, and secure systems Robert C. Seacord
title_short	The CERT C coding standard
title_sort	cert c coding standard 98 rules for developing safe reliable and secure systems
title_sub	98 rules for developing safe, reliable, and secure systems
topic	C (Computer program language) Computer programming Standards C (Langage de programmation) Programmation (Informatique) ; Normes COMPUTERS ; Programming Languages ; C COMPUTERS ; Programming ; General Computer programming ; Standards
topic_facet	C (Computer program language) Computer programming Standards C (Langage de programmation) Programmation (Informatique) ; Normes COMPUTERS ; Programming Languages ; C COMPUTERS ; Programming ; General Computer programming ; Standards
work_keys_str_mv	AT seacordrobertc thecertccodingstandard98rulesfordevelopingsafereliableandsecuresystems AT seacordrobertc certccodingstandard98rulesfordevelopingsafereliableandsecuresystems

Verfügbarkeit

‌

Online lesen