Sciweavers

IEEEARES
2007
IEEE

Secure Software Development through Coding Conventions and Frameworks

14 years 6 months ago
Secure Software Development through Coding Conventions and Frameworks
It is difficult to apply existing software development methods to security concerns. Using software for security testing purposes, in particular, is hard to do. The fact that there is a restriction on the implementation of software affects the ease with which security can be tested. In this paper we propose a decision process of coding conventions for security, mindful of testing security. Then, we apply our method to preventing injection attacks on Web application programs, and establish some coding conventions that can be used against injection attacks and cross site scripting. We also discuss security frameworks, which are also useful as conventions.
Takao Okubo, Hidehiko Tanaka
Added 03 Jun 2010
Updated 03 Jun 2010
Type Conference
Year 2007
Where IEEEARES
Authors Takao Okubo, Hidehiko Tanaka
Comments (0)