This document specifies software programming language vulnerabilities to be avoided in the development of systems where assured behaviour is required for security, safety, mission-critical and business-critical software. In general, this guidance is applicable to the software developed, reviewed, or maintained for any application.
This document describes the way that the vulnerabilities listed in ISO/IEC TR 24772-1 are manifested or avoided in the C language.
Status: PublishedPublication date: 2020-05
Edition: 1Number of pages: 42
Technical Committee: ISO/IEC JTC 1/SC 22 Programming languages, their environments and system software interfaces
Buy this standard
|std 1 166||PDF + ePub|
|std 2 166||Paper|