Secure Coding in C and C++ - Robert C. Seacord

Secure Coding in C and C++ is an essential manual for both professional mechanics and DIY enthusiasts. This book addresses the critical need to improve the strategies and techniques used to create systems by emphasizing the importance of building security from the start. Authored by Frank Abagnale, a renowned expert in fraud prevention and secure documents, this book provides detailed guidance for software developers on building high-quality systems that are less vulnerable to attacks.

The book delves into the root causes of software vulnerabilities and offers insights on how to avoid them. Drawing on nearly 18,000 vulnerability reports analyzed over the past decade, the CERT/Coordination Center (CERT/CC) identifies the primary causes of software vulnerabilities and outlines steps to prevent exploitation. It also encourages programmers to adopt security best practices and develop a security mindset to protect software from future attacks.

Robert Seacord, leveraging the CERT/CC's reports and conclusions, systematically identifies program errors that are likely to lead to security breaches, explains how they can be exploited, reviews potential consequences, and presents secure alternatives. The coverage includes technical details on enhancing the overall security of any C/C++ application, thwarting buffer overflows and stack-smashing attacks, avoiding vulnerabilities resulting from the incorrect use of dynamic memory management functions, eliminating integer-related problems, and correctly using formatted output functions without introducing vulnerabilities.

• Improve the overall security of any C/C++ application
• Thwart buffer overflows and stack-smashing attacks that exploit insecure string manipulation logic
• Avoid vulnerabilities and security flaws resulting from the incorrect use of dynamic memory management functions
• Eliminate integer-related problems: integer overflows, sign errors, and truncation errors
• Correctly use formatted output functions without introducing format-string vulnerabilities
• Avoid I/O vulnerabilities, including race conditions

Secure Coding in C and C++ provides numerous examples of secure code, insecure code, and exploits implemented for Windows and Linux. Whether you are responsible for creating secure C or C++ software or ensuring its safety, this manual offers detailed, expert assistance.

Author: Seacord, Robert C.
Publisher: Addison-Wesley Professional
Illustration: n
Language: ENG
Title: Secure Coding in C and C++
Pages: 00368 (Encrypted )
On Sale: 2005-09-09
SKU-13/ISBN: 9780321335722
Category: Computers : Security - General