Secure Coding in C and C++ (SEI Series in Software Engineering)
ISBN: 0321822137
Found in 3 comments on Hacker News
View on Amazon
We may earn a commission from purchases made through links on this page.
Not ready yet? Get weekly book picks.
Vindicis
· 2017-10-16
·
Original thread
https://www.amazon.com/Secure-Coding-2nd-Software-Engineerin...
hermitdev
· 2017-03-22
·
Original thread
I've not read through the CERT C++ rules (yet), but I highly recommend reading "Secure Coding in C and C++" [0]. Expectedly, there's a good discussion on bounds checking. But, nearly half the book is dedicated to integer underflow/overflow (and signed/unsigned) issues (which most devs either ignore or are oblivious to). It's not a panacea, but if you're write C/C++ without thinking about security and how things can go wrong, it can be a real eye opener.
[0] https://www.amazon.com/Secure-Coding-2nd-Software-Engineerin...
spiralpolitik
· 2014-03-06
·
Original thread
A good place to start:
http://www.amazon.com/The-CERT-Secure-Coding-Standard/dp/032...
Online:
https://www.securecoding.cert.org/confluence/display/seccode...
Others:
http://www.amazon.com/Secure-Coding-Edition-Software-Enginee...
http://www.amazon.com/Style-Guidelines-Programming-Professio...
http://www.amazon.com/C-Traps-Pitfalls-Andrew-Koenig/dp/0201...
Get the best books from Hacker News each week
Join 4,500+ subscribers and get the best books mentioned on Hacker News every Thursday.
