SecurityFocus

Writing Secure code Dec 27 2002 12:46PM
Rahul Chander Kashyap (rahul nsecure net) (6 replies)

Re: Writing Secure code Dec 28 2002 03:36AM
K K Mookhey (cto nii co in)

Re: Writing Secure code Dec 27 2002 11:16PM
Bob Bruen (coldrain sover net)

Re: Writing Secure code Dec 27 2002 06:17PM
Dana Epp (dana vulscan com)

Re: Writing Secure code Dec 27 2002 06:03PM
Valdis Kletnieks vt edu (2 replies)

Re: Writing Secure code Dec 28 2002 07:40AM
Glynn Clements (glynn clements virgin net) (2 replies)

Re: Writing Secure code Dec 29 2002 12:35AM
Cesar (cesarc56 yahoo com)

Re: Writing Secure code Dec 28 2002 07:04PM
Crispin Cowan (crispin wirex com)

RE: Writing Secure code Dec 27 2002 08:51PM
Roger Alexander (rta cs colostate edu) (1 replies)

RE: Writing Secure code Dec 30 2002 12:41PM
Matt McClellan (mmcclellan nfr com) (2 replies)

A proposal:

Since a lot of the discussion on this thread (including my own
contributions) has focused on semantic issues such as defining "secure
code", why not take a stab at a working definition for secure code so we
can get down to brass tacks?

For starters, let's go with a paraphrase of the definition provided by
John Viega:

Code that is not in and of itself exploitable through a flaw
its implementation.

with the following stipulations:

1. It is not practical to determine whether or not non-trivial code is
"bug-free". As stated before, that would require testing all possible
paths with all possible inputs in all possible environments. Even if it
was possible, it would be extremely tedious. :-)

2. Generally, the developer can only control how input to the program
(including return codes, signals, etc) is handled, not how external
resources function. For example, the developer can't really do squat if
Oscar P. Malware trojans libc so that it transmits the data from each
and every *printf call to his dark black hat lair.

--McC
--
Matt McClellan Sr. Software Engineer
mmcclellan (at) nfr (dot) com [email concealed] NFR Security, Inc.

[ reply ]

RE: Writing Secure code Jan 01 2003 02:46AM
peleus (peleus peleus net) (1 replies)

RE: Writing Secure code Jan 03 2003 04:36AM
Timo Sirainen (tss iki fi)

Re: Writing Secure code[update] Dec 31 2002 10:20AM
Rahul Chander Kashyap (rahul nsecure net) (2 replies)

Re: Writing Secure code[update] Jan 01 2003 12:21PM
K K Mookhey (cto nii co in) (2 replies)

Re: Writing Secure code[update] Jan 04 2003 12:31AM
Warwick Molloy (wmolloy optushome com au)

Re: Writing Secure code[update] Jan 02 2003 11:55PM
Alex Russell (alex netWindows org)

Re: Writing Secure code[update] Dec 31 2002 08:28PM
Crispin Cowan (crispin wirex com)

RE: Writing Secure code Dec 27 2002 05:46PM
Jeremy Epstein (jepstein webmethods com) (1 replies)

Re: Writing Secure code Dec 27 2002 08:50PM
Valdis Kletnieks vt edu

Re: Writing Secure code Dec 27 2002 05:43PM
John Viega (viega list org) (2 replies)

Re: Writing Secure code Dec 27 2002 09:54PM
Alex Russell (alex netWindows org) (1 replies)

Re: Writing Secure code Dec 27 2002 08:57PM
John Viega (viega list org)

RE: Writing Secure code Dec 27 2002 08:59PM
Matt McClellan (mcc nfr com) (1 replies)

Re: Writing Secure code Dec 27 2002 09:06PM
John Viega (viega list org)