dev/Sorting/Thoughts

Journal of development Sorting Thoughts and more…

Apple updates “Secure Coding Guide”

Posted on Feb 20, 2014 in iOS, Mac, Programming, Security

SecureCodingQuideCover

Security is not something that can be added to software as an afterthought; just as a shed made out of cardboard cannot be made secure by adding a padlock to the door, an insecure tool or application may require extensive redesign to secure it. You must identify the nature of the threats to your software and incorporate secure coding practices throughout the planning and development of your product.

This chapter explains the types of threats that your software may face. Other chapters in this document describe specific types of vulnerabilities and give guidance on code hardening techniques to fix them.

The latest update of Apple’s “Secure Coding Guide” contains following changes:

  • Added information about non-executable stacks and heaps, address space layout randomization, injection attacks, and cross-site scripting.

Links

Submit a Comment

Your email address will not be published. Required fields are marked *

By continuing to use the site, you agree to the use of cookies. more information

The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.

Close