ISO/IEC TR 24772:2013 specifies software programming language vulnerabilities to be avoided in the development of systems where assured behaviour is required for security, safety, mission-critical and business-critical software. In general, this guidance is applicable to the software developed, reviewed, or maintained for any application.
Vulnerabilities are described in a generic manner that is applicable to a broad range of programming languages.
Status: WithdrawnPublication date: 2013-03
Edition: 2Number of pages: 319
Technical Committee: ISO/IEC JTC 1/SC 22 Programming languages, their environments and system software interfaces