13 January 2009
Top 25 coding errors listed
A list of the 25 most common coding mistakes has been issued by the US National Security Agency.
Experts from more than 30 US and international cyber security organisations combined forces to compile the list which highlights vulnerabilities to cyber crime. Worryingly, the report claims that many errors are not well understood by programmers due to a lack of computer science training and testing by development software organisations. Last year, two such errors resulted in over 1.5million website security breaches. A spokesman from the Office of the Director of National Intelligence said: “We believe that integrity of hardware and software products is a critical element of cybersecurity. Creating more secure software is a fundamental aspect of system and network security, given that the federal government and the nation’s critical infrastructure depend on commercial products for business operations. The top 25 is an important component of an overall security initiative for our country. We applaud this effort and encourage the utility of this tool trough other venues such as cyber education.”
Author
Chris Shaw
Supporting Information
Websites
http://www.sans.org/top25errors/
This material is protected by Findlay Media copyright
See Terms
and Conditions.
One-off usage is permitted but bulk copying is not.
For multiple copies contact the
sales team.