Secure Coding mailing list archives

Previous By Date Next
Previous By Thread Next

re-writing college books [was: Re: A banner year for software bugs | Tech News on ZDNet]

From: michaelslists at gmail.com (mikeiscool)
Date: Fri, 13 Oct 2006 21:02:23 +1000
On 10/13/06, Craig E. Ward <cew at acm.org> wrote:

At 10:03 AM -0400 10/12/06, ljknews wrote:

At 9:20 AM -0400 10/12/06, Robert C. Seacord wrote:


 I'm also teaching a course at CMU in the spring on Secure Coding in C
 and C++.


Is there participation on this list from the (hopefully larger number of)
CMU instructors who are teaching people to use safer languages in the first
place ?
--
Larry Kilgallen



I don't think saying "use safer languages" is a good way to say it.
It would help conditions significantly if greater care were taken to
match the choice of programming language to the problem to be solved
or application to be created. If a language like C is most
appropriate, then use it, just be sure to take the extra steps needed
to develop it securely.

The problem is so much the programming languages as it is the way
they are used.


Well, programming languages can go a long way to helping solve the
problem, and it can be reasonably grey as to where to use what. Should
I use php or ror? or python? or c#? I'd say there is a very
appropriate and open space for nice "secure" languages to live and
develop.



Craig


-- mic
Previous By Date Next
Previous By Thread Next

Current thread: