SECURE PROGRAMMING CONCEPTS IN SELECTED C++ AND JavaTM TEXTBOOKS
نویسندگان
چکیده
Creating secure software applications and writing secure programs are difficult affairs. Secure programs are well designed software applications which meet specified requirements. Well designed software is reliable in its availability and accessibility. The paper’s problem is whether the textbooks used in instruction of beginning programming students directly and actively discuss secure programming issues. A possible flaws model (buffer overrun, format string, integer overflow, SQL injection, command line injection, and exception handling) is constructed. Selected introductory textbooks on Java and C++ were reviewed.
منابع مشابه
A Mechanism for Secure, Fine-Grained Dynamic Provisioning of Applications on Small Devices
As small, secure devices become more powerful and more widespread, it has become desirable to support the dynamic provisioning and updating of multiple applications on such devices. This paper presents a simple mechanism for performing such provisioning and updating, even if the applications are mutually distrustful. The mechanism extends CLDC JavaTM technology with a classfile attribute that c...
متن کاملScripting: Higher-Level Programming for the 21st Century
Scripting languages such as Perl and Tcl represent a very different style of programming than system programming languages such as C or JavaTM. Scripting languages are designed for “gluing” applications; they use typeless approaches to achieve a higher level of programming and more rapid application development than system programming languages. Increases in computer speed and changes in the ap...
متن کاملAutomated Delegation is a Viable Alternative to Multiple Inheritance in Class Based Languages
Multiple inheritance is still a controversial feature in traditional object-oriented languages, as evidenced by its omission from such languages as Modula-3, Objective C and JavaTM. Nonetheless, users of such languages often complain about having to work around the absence of multiple inheritance. Automating delegation, in combination with a multiple subtyping mechanism, provides many of the sa...
متن کاملAdding Type Parameterization to the JavaTM Language
Although the Java programming language has achieved widespread acceptance, one feature that seems sorely missed is the ability to use type parameters (as in Ada generics, C++ templates, and ML polymorphic functions or data types) to allow a general concept to be instantiated to one or more specific types. In this paper, we propose parameterized classes and interfaces in which the type parameter...
متن کاملA JavaTM 1 Implementation of a BDD Package
Efficient manipulation of Boolean functions is the foundation of many formal verification tasks. Several code libraries and development environments exist in the public domain which perform these tasks using ordered binary decision diagrams as the central data structure. This paper describes a re-implementation of one of these libraries, David Long’s bddlib, in Sun Microsystems’ Java computer l...
متن کامل