UNLIMITED FREE
ACCESS TO THE WORLD'S BEST IDEAS

SUBMIT
Already a GlobalSpec user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your GlobalSpec Experience

Select Your Free Newsletters

Industry Newsletters

Select Your Free Product Alerts

Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

CSA ISO/IEC TR 24772

Information technology — Programming languages — Guidance to avoiding vulnerabilities in programming languages through language selection and use

active, Most Current
Buy Now
Organization: CSA
Publication Date: 1 January 2015
Status: active
Page Count: 349
ICS Code (Languages used in information technology): 35.060
scope:

This Technical Report specifies software programming language vulnerabilities to be avoided in the development of systems where assured behaviour is required for security, safety, mission-critical and business-critical software. In general, this guidance is applicable to the software developed, reviewed, or maintained for any application.

Vulnerabilities are described in a generic manner that is applicable to a broad range of programming languages.

Document History

CSA ISO/IEC TR 24772
January 1, 2015
Information technology — Programming languages — Guidance to avoiding vulnerabilities in programming languages through language selection and use
This Technical Report specifies software programming language vulnerabilities to be avoided in the development of systems where assured behaviour is required for security, safety, mission-critical...
CAN/CSA-ISO/IEC TR 24772-12
March 1, 2012
Information technology — Programming languages — Guidance to avoiding vulnerabilities in programming languages through language selection and use
This Technical Report specifies software programming language vulnerabilities to be avoided in the development of systems where assured behaviour is required for security, safety, mission critical...

References

This document references:
ISO 80000-2 - Quantities and units — Part 2: Mathematics
Published by ISO on August 1, 2019
This document specifies mathematical symbols, explains their meanings, and gives verbal equivalents and applications. This document is intended mainly for use in the natural sciences and technology,...
This document references:
IEC 61508-1 - Functional safety of electrical/electronic/programmable electronic safety-related systems – Part 1: General requirements
Published by IEC on April 1, 2010
This International Standard covers those aspects to be considered when electrical/electronic/programmable electronic (E/E/PE) systems are used to carry out safety functions. A major objective of this...
This document references:
IEC 61508-2 - Functional safety of electrical/electronic/programmable electronic safety-related systems – Part 2: Requirements for electrical/electronic/programmable electronic safety-related systems
Published by IEC on April 1, 2010
This part of the IEC 61508 series a) is intended to be used only after a thorough understanding of IEC 61508-1, which provides the overall framework for the achievement of functional safety; b)...
This document references:
IEC 61508-3 - Functional safety of electrical/electronic/programmable electronic safety-related systems – Part 3: Software requirements
Published by IEC on April 1, 2010
This part of the IEC 61508 series a) is intended to be utilized only after a thorough understanding of IEC 61508-1 and IEC 61508-2; b) applies to any software forming part of a safety-related system...
View Less
View All
Advertisement