ISO/IEC TR 24772-1:2019

Programming languages — Guidance to avoiding vulnerabilities in programming languages — Part 1: Language-independent guidance

Standard Details

This document specifies software programming language vulnerabilities to be avoided in the development of systems where assured behaviour is required for security, safety, mission-critical and business-critical software. Language-specific descriptions of these vulnerabilities are provided in other parts of the ISO/IEC 24772 series.

It is applicable to the software developed, reviewed, or maintained for any application.

This document does not address software engineering and management issues such as how to design and implement programs, use configuration management tools, use managerial processes, and perform process improvement. Furthermore, the specification of properties and applications to be assured are not treated.

Vulnerabilities are described in a generic manner that is applicable to a broad range of programming languages.

General Information

Status : Published

Standard Type: Main

Document No: ISO/IEC TR 24772-1:2019

Document Year: 2019

Pages: 166

Edition: 1

Section Volume:
ISO/IEC JTC 1/SC 22. Programming languages, their environments and system software interfaces

ICS:
35.060 Languages used in information technology

Life Cycle

Currently Viewing

Published

ISO/IEC TR 24772-1:2019

ISO/IEC TR 24772-1:2019

Standard Details

General Information

Life Cycle

Add Standards To Trackedge

Enquiry Form