Page History

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="a02a644e2cf0459c-54195560-4cd04f64-8c38b254-60af92e5bf24dadc73d43d42"><ac:parameter ac:name="">Burch 06</ac:parameter></ac:structured-macro>
\[Burch 06\] Hal Burch, FredH.; Long, RobertF.; & Seacord, R.  [_Specifications for Managed Strings_|http://www.sei.cmu. May 2006.  CMU/SEI-2006-TR-006edu/publications/documents/06.reports/06tr006.html] (CMU/SEI-2006-TR-006). Pittsburgh, PA: Software Engineering Institute, Carnegie Mellon University, 2006.

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="525142adf8559a78-856fafaa-44d74dc0-9467bed8-fe749a6e2c423932cc498eda"><ac:parameter ac:name="">CERT 06</ac:parameter></ac:structured-macro>
\[CERT 06\] CERT. [Managed String Library|http://www.cert.org/secure-coding/managedstring.html] (2006).

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="a401792dc670db79-e89838ed-455a426d-80498cc2-a8ea9c0e4dac102f3f823f8f"><ac:parameter ac:name="">Graf 03</ac:parameter></ac:structured-macro>
\[GrafGraff 03\] Graff, Mark G. & Van Wyk, Kenneth R. Secure Coding: Principles and Practices. Cambridge, MA: O'Reilly, July 2003. (ISBN 0596002424).

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="eaf3f2b652f44f68-0c7b0b11-4b37471d-863188a8-55af7b3cc9133457de333224"><ac:parameter ac:name="">Haddad 05</ac:parameter></ac:structured-macro>
\[Haddad 05\] Haddad, Ibrahim. "Secure Coding in C and C++: An interview with Robert Seacord, senior vulnerability analyst at CERT." _Linux World Magazine_, November, 2005.

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="b7b05a2e7ffc7e6c-051e7d4c-42e449b9-b5a78f7c-a77f551509dba55f0b984bf8"><ac:parameter ac:name="">Hatton 94</ac:parameter></ac:structured-macro>
\[Hatton 0495\] Hatton, Les. _Safer C: Developing Software for High-integrityIntegrity and Safety-criticalCritical Systems_. New York, NY: McGraw-Hill Book Company., 1995 (ISBN 0-07-707640-0).

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="b43f104894467844-87424f4c-418c402b-9c8990bc-9f91114ffe23071062556f6b"><ac:parameter ac:name="">ilja 06</ac:parameter></ac:structured-macro>
\[ilja 06\] ilja. "[readlink abuse|http://blogs.23.nu/ilja/stories/12551/]." _ilja's blog_, August 13, 2006.

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="c2ff9c8f64eee235-d821f575-40694ec8-807397dd-66555f7d44b0ca7d07635361"><ac:parameter ac:name="">ISO/IEC 9899-1999</ac:parameter></ac:structured-macro>
\[ISO/IEC 9899-1999\] ISO/IEC 9899-1999. _Programming Languages --- C, Second Edition_, 1999.

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="bc7d932ab27912bd-bd2bead9-474a418a-98239909-27304411999fa67bfea633ff"><ac:parameter ac:name="">ISO/IEC TR 24731-2006</ac:parameter></ac:structured-macro>
\[ISO/IEC TR 24731-2006\] ISO/IEC TR 24731. _Extensions to the C Library, --- Part I: Bounds-checking interfaces_. April, 2006.

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="10f15395df9a7be4-28845242-43f94d5c-94e9a05b-229c9a475a023dd18929e72a"><ac:parameter ac:name="">Kerrighan 88</ac:parameter></ac:structured-macro>
\[Kerrighan 88\] Kerrighan, B. W. & Ritchie, and D. M. Ritchie. _The C Programming Language., 2nd ed._ Englewood Cliffs, NJ: Prentice-Hall, 1988.

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="9f8a5f16975f69f0-1a8df8f0-4ab34dde-9ac49a37-203d2270c78dba56d610f675"><ac:parameter ac:name="">Klein 02</ac:parameter></ac:structured-macro>
\[Klein 02\] Klein, Jack. [_Bullet Proof Integer Input Using strtol()_. [|http://home.att.net/~jackklein/c/code/strtol.html] (2002).

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="9ba3df3f131daa65-8414e6e9-4364470b-a11493d8-3ca378ee96f695da2effbfc3"><ac:parameter ac:name="">mercy</ac:parameter></ac:structured-macro>
\[mercy\] mercy. [_Exploiting Uninitialized Data_. [|http://www.felinemenace.org/papers/UBehavior.zip] (January 2006).

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="3afeadc08ae3bc61-6fbe9de9-48054c84-95479248-f64dc28af57fce20ee70762b"><ac:parameter ac:name="">MISRA 04</ac:parameter></ac:structured-macro>
\[MISRA 04\] MIRA Limited. "[MISRA C|http://www.misra.org.uk/]: 2004 Guidelines for the useUse of the C languageLanguage in criticalCritical systemsSystems." Warwickshire, UK: MIRA Limited. Warwickshire, UK. October 2004. (ISBN 0 9524156 4095241564X).

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="c203f9dea812ae44-c4de32df-462f460e-9fab9138-3015714f24268b93f004ad18"><ac:parameter ac:name="">NASA-GB-1740.13</ac:parameter></ac:structured-macro>
\[NASA-GB-1740.13\] NASA-GB-1740.13. NASA Guidebook for Safety Critical Software Analysis and Development. [http://pbma.nasa.gov/docs/public/pbma/general/guidbook.doc]

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="e2c3689ee8c3175e-145dc013-44454b9b-91f1ad22-dfc6658043887ad622f9dd51"><ac:parameter ac:name="">NIST 06</ac:parameter></ac:structured-macro>
\[NIST 06\] NIST. SAMATE Reference Dataset (SRD).See [http://samate.nist.gov/SRD/srdFiles/]

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="033c0237e6a1c34c-2a453c5b-4ae340f5-affcaadc-3305aae4d5bea63ec68cf0f3"><ac:parameter ac:name="">Open Group 97</ac:parameter></ac:structured-macro>
\[Open Group 97\] The Open Group. _[_The Single UNIX ® Specification, Version 2_|http://www.opengroup.org/pubs/online/7908799/xsh/readlink.html]_ (1997).

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="177bd60d8feb7ed4-2493b235-4cb444d7-96109e76-701f85e46e5859ea67110387"><ac:parameter ac:name="">Open Group 04a</ac:parameter></ac:structured-macro>
\[Open Group 04a\] The Open Group. "[readlink|http://www.opengroup.org/onlinepubs/000095399/functions/readlink.html]." _The Open Group Base Specifications Issue 6, IEEE Std 1003.1, 2004 Edition_ (2004).

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="bb34a4b89cc10cb2-62542095-460a4d1d-b1619405-3b87e2e0f2862ade49dacb1c"><ac:parameter ac:name="">Open Group 04b</ac:parameter></ac:structured-macro>
\[Open Group 04b\] The Open Group. "[realpath|http://www.opengroup.org/onlinepubs/009695399/functions/realpath.html]." The Open Group Base Specifications Issue 6, IEEE Std 1003.1, 2004 Edition\_ (2004).

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="8850924179db698e-43510e65-41fd4904-9afb8916-d9364f30bc969c9381b948ee"><ac:parameter ac:name="">Plum 89</ac:parameter></ac:structured-macro>
\[Plum 89\] Plum, Thomas. C Programming Guidelines. Plum Hall; 2nd edition (June 1989). ISBN: 0911537074.

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="4572f315d1507450-2473d352-4d6d4b2c-af6b9352-11996abda005f5f6b88c139c"><ac:parameter ac:name="">Plum 91</ac:parameter></ac:structured-macro>
\[Plum 91\] Thomas Plum, Dan Saks. C+\+ Programming Guidelines. Plum Hall (November 1991). ISBN: 0911537104

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="b94a714588c34dac-43428e24-42c7412f-9d268ff1-853b134e281dee13dcae3367"><ac:parameter ac:name="">Seacord 05</ac:parameter></ac:structured-macro> <ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="a08a44fe27195c64-d5a604ba-4a3d4932-ad31a477-e82a4d497c50a9db7b5fb24a"><ac:parameter ac:name="">Seacord 05a</ac:parameter></ac:structured-macro>
\[Seacord 05a\] Seacord, R. Secure Coding in C and C++. Addison-Wesley, 2005. See [http://www.cert.org/books/secure-coding] for news and errata.

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="f134297fdd942e61-373bee8d-481648aa-97c386d2-6a31dd59babb30fe612cdd1d"><ac:parameter ac:name="">Seacord 05b</ac:parameter></ac:structured-macro>
\[Seacord 05b\] Seacord, R. Managed String Library for C. C/C+\+ Users Journal. Vol. 23, No. 10. Pages 30-34. October 2005.

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="e5621d84ea77c133-096c2fd9-49bb432b-9d93a8b4-c1a675976fc7b74cee86405d"><ac:parameter ac:name="">Summit 95</ac:parameter></ac:structured-macro>
\[Summit 95\] Summit, Steve. _C Programming FAQs: Frequently Asked Questions_. Boston, MA: Addison-Wesley, 1995 (ISBN 0201845199).

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="d9b124af718c9988-4102bb46-403642fe-9c68b75f-4053942bea269a38a81fb4eb"><ac:parameter ac:name="">Summit 05</ac:parameter></ac:structured-macro>
\[Summit 05\] Summit, Steve. _comp.lang.c Frequently Asked Questions_. [http://c-faq.com/] (2005).

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="14eeee0a47e5692a-84e30840-451e4fc5-8688b8ab-a5fafd942a8462b10d1d0343"><ac:parameter ac:name="">Viega 03</ac:parameter></ac:structured-macro>
\[Viega 03\] Viega, John & Messier, Matt. _Secure Programming Cookbook for C and C++: Recipes for Cryptography, Authentication, Networking, Input Validation & More_. Sebastopol, CA: O'Reilly, 2003 (ISBN 0-596-00394-3).

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="97e6c3bbed45631e-78d04c1c-486f4987-9771bf2a-8a4e6b84d9d5a1f767eaec8a"><ac:parameter ac:name="">Warren 02</ac:parameter></ac:structured-macro>
\[Warren 02\] Henry S. Warren. Hacker's Delight. Addison Wesley Professional. July, 2002. ISBN: 0201914654.