Secure Coding in C and C++
Robert C. Seacord
Secure Coding in C and C++ provides a detailed explanation of common programming errors in C and C++ and describes how these errors can lead to vulnerable software.
This workshop concentrates on security issues intrinsic to the C and C++ programming languages and associated libraries. You will learn to identify vulnerabilities ensuing from common security flaws including:
- Insecure Integer operations
- Undefined behaviors
- Memory safety
This workshop covers specific remediation techniques for each category of security flaws as well as general secure coding practices that help prevent the introduction of vulnerabilities.
Material in this presentation was derived from the Addison-Wesley books Secure Coding in C and C++.
Robert C. Seacord
Robert C. Seacord is standardization lead at Woven by Toyota, where he helps standardize software development practices. Robert is an expert on ISO/IEC JTC1/SC22/WG14, the international standardization working group for the C programming language. He is the author of seven books, including Effective C (No Starch, 2020), The CERT C Coding Standard, Second Edition (Addison-Wesley, 2014), Secure Coding in C and C++, Second Edition (Addison-Wesley, 2013), and Java Coding Guidelines: 75 Recommendations for Reliable and Secure Programs (Addison-Wesley, 2014). He has also published more than 50 papers on software security, component-based software engineering, web-based system design, legacy-system modernization, component repositories and search engines, and user interface design and development.