> >ISO/IEC TR 24772 : 2013
New Reduced price! ISO/IEC TR 24772 : 2013 View larger

ISO/IEC TR 24772 : 2013

M00027229

New product

ISO/IEC TR 24772 : 2013

INFORMATION TECHNOLOGY - PROGRAMMING LANGUAGES - GUIDANCE TO AVOIDING VULNERABILITIES IN PROGRAMMING LANGUAGES THROUGH LANGUAGE SELECTION AND USE

International Organization for Standardization

More details

In stock

$35.10

-55%

$78.00

More info

Table of Contents

Foreword
Introduction
1. Scope
2. Normative references
3. Terms and definitions, symbols and conventions
4. Basic concepts
5. Vulnerability issues
6. Programming Language Vulnerabilities
7. Application Vulnerabilities
8. New Vulnerabilities
Annex A (informative) - Vulnerability Taxonomy and List
Annex B (informative) - Language Specific Vulnerability
        Template
Annex C (informative) - Vulnerability descriptions for
        the language Ada
Annex D (informative) - Vulnerability descriptions for
        the language C
Annex E (informative) - Vulnerability descriptions for
        the language Python
Annex F (informative) - Vulnerability descriptions for
        the language Ruby
Annex G (informative) - Vulnerability descriptions for
        the language SPARK
Annex H (informative) - Vulnerability descriptions for
        the language PHP
Bibliography
Index

Abstract

Defines software programming language vulnerabilities to be avoided in the development of systems where assured behaviour is required for security, safety, mission critical and business critical software.

General Product Information

Document Type Standard
Status Current
Publisher International Organization for Standardization
Committee JTC 1