C安全编码标准(实现C安全编程的权威指南)__...
5星 · 超过95%的资源 需积分: 11 185 浏览量
2012-02-18
08:54:34
上传
评论
收藏 2.05MB PDF 举报 
Legal Notice
This page last changed on Sep 10, 2007 by rcs.
CERT C Programming Language Secure Coding
Standard
Document No. N1255
September 10, 2007
Legal Notice
This document represents a preliminary draft of the CERT C Programming Language Secure Coding
Standard. This project was initiated following the 2006 Berlin meeting of WG14 to produce a secure
coding standard based on the C99 standard. Although this is an incomplete work, we would greatly
appreciate your comments and feedback at this time to further the development and refinement of the
material. Please provide comments that are commensurate with the existing detail in the document. For
example, if a rule or recommendation is simply a stub you may wish to comment if you think having a
rule or recommendation in that area is unwarranted.
This work is sponsored by the U.S. Department of Defense.
The Software Engineering Institute is a federally funded research and development center sponsored by
the U.S. Department of Defense.
Copyright 2007 Carnegie Mellon University.
NO WARRANTY
THIS CARNEGIE MELLON UNIVERSITY AND SOFTWARE ENGINEERING INSTITUTE MATERIAL IS
FURNISHED ON AN "AS-IS" BASIS. CARNEGIE MELLON UNIVERSITY MAKES NO WARRANTIES OF ANY
KIND, EITHER EXPRESSED OR IMPLIED, AS TO ANY MATTER INCLUDING, BUT NOT LIMITED TO,
WARRANTY OF FITNESS FOR PURPOSE OR MERCHANTABILITY, EXCLUSIVITY, OR RESULTS OBTAINED
FROM USE OF THE MATERIAL. CARNEGIE MELLON UNIVERSITY DOES NOT MAKE ANY WARRANTY OF ANY
KIND WITH RESPECT TO FREEDOM FROM PATENT, TRADEMARK, OR COPYRIGHT INFRINGEMENT.
Use of any trademarks in this report is not intended in any way to infringe on the rights of the trademark
holder.
Internal use. Permission to reproduce this document and to prepare derivative works from this document
for internal use is granted, provided the copyright and "No Warranty" statements are included with all
reproductions and derivative works.
External use. Requests for permission to reproduce this document or prepare derivative works of this
document for external and commercial use should be addressed to the SEI Licensing Agent.
This work was created in the performance of Federal Government Contract Number F19628-00-C-0003
Document generated by Confluence on Sep 10, 2007 13:11 Page 8
剩余479页未读,继续阅读
资源评论
yangyangwb2014-07-24英文版,描述比较详细。谢谢分享
sunny_1112012-12-27各点描述的比较详细。但是没找到我需要的关于耦合度方面的描述。
sjy19672014-02-06英文版的C语言安全编码标准,是C语言程序员进行软件安全开发时很全面的指导性文献。- bdgjmt2013-09-04描述的比较详细。必看.good
- allthorn2013-04-19每一位C程序员必看,实现C安全编程的权威指南。
