Page History

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="089531cf732c872a-1b6f3899-4c3d43ae-aaeda87d-c27e770919d42b53ef8c37e6"><ac:parameter ac:name="">Burch 06</ac:parameter></ac:structured-macro>
\[Burch 06\] Burch, H.; Long, F.; & Seacord, R. [_Specifications for Managed Strings_|http://www.sei.cmu.edu/publications/documents/06.reports/06tr006.html] (CMU/SEI-2006-TR-006). Pittsburgh, PA: Software Engineering Institute, Carnegie Mellon University, 2006.

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="4847d05fa0190590-f28c7bb9-4b2e47d9-928da925-5a39b4c61136dc59a540506d"><ac:parameter ac:name="">CERT 06</ac:parameter></ac:structured-macro>
\[CERT 06\] CERT. [Managed String Library|http://www.cert.org/secure-coding/managedstring.html] (2006).

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="af4c54a5f74b1e2e-4bd59983-4426412b-91ce802d-b48ff843d1d80601dc9490f2"><ac:parameter ac:name="">Dewhurst 02</ac:parameter></ac:structured-macro>
\[Dewhurst 02\] Dewhurst, Stephen C. _C+\+ Gotchas: Avoiding Common Problems in Coding and Design_. Boston, MA: Addison-Wesley Professional, 2002.

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="ab381030ff3d4fbd-edd8781b-456f4641-b705b412-c3dd2da5ae72d22da762c160"><ac:parameter ac:name="">Graf>FSF 03<05</ac:parameter></ac:structured-macro>
\[GraffFSF 0305\] Graff,Free MarkSoftware GFoundation. &[GCC online documentation.|http://gcc.gnu.org/onlinedocs] (2004).

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="a793808c05cf9a5f-940bfbbd-461e4d46-85e2a727-6c287958b73fff8648ad2456"><ac:parameter ac:name="">Griffiths 06</ac:parameter></ac:structured-macro>
\[Griffiths 06\] Griffiths, Andrew. "[Clutching at straws: When you can shift the stack pointer|http://felinemenace.org/papers/p63-0x0e_Shifting_the_Stack_Pointer.txt]."&nbsp;

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="66641ea713b5778f-6820bd68-41734f40-9f2bab6b-8963e88dd7a3770ae5c1ec67"><ac:parameter ac:name="">Haddad 05</ac:parameter></ac:structured-macro>
\[Haddad 05\] Haddad, Ibrahim. "Secure Coding in C and C++: An interview with Robert Seacord, senior vulnerability analyst at CERT." _Linux World Magazine_, November, 2005.

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="6d17ae81933805ef-8ee414de-42be4d2e-a63ab91b-552e42630bc39fb59d89b5db"><ac:parameter ac:name="">Hatton 95</ac:parameter></ac:structured-macro>
\[Hatton 95\] Hatton, Les. _Safer C: Developing Software for High-Integrity and Safety-Critical Systems_. New York, NY: McGraw-Hill Book Company, 1995 (ISBN 0-07-707640-0).

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="dbb10494927abd44-82e68a39-4b254019-9c2186cb-9b0d438eb0f063b9ae1c0882"><ac:parameter ac:name="">ilja 06</ac:parameter></ac:structured-macro>
\[ilja 06\] ilja. "[readlink abuse|http://blogs.23.nu/ilja/stories/12551/]." _ilja's blog_, August 13, 2006.

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="0619f53540928e34-5d51ad27-429b41d5-8af8b6d3-189cfa36d3b2d51c64d75726"><ac:parameter ac:name="">ISO/IEC 9899-1999</ac:parameter></ac:structured-macro>
\[ISO/IEC 9899-1999\] ISO/IEC 9899-1999. _Programming Languages --- C, Second Edition_, 1999.

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="32839e088e4f7cbc-826dd85d-43334687-bf68b5b3-e2af6f44b09a8621b1448268"><ac:parameter ac:name="">ISO/IEC TR 24731-2006</ac:parameter></ac:structured-macro>
\[ISO/IEC TR 24731-2006\] ISO/IEC TR 24731. _Extensions to the C Library, --- Part I: Bounds-checking interfaces_. April, 2006.

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="a95f76064124fbc8-f8ceb2ce-4c7f4e9b-adc69d3b-0610f470b5748ac8c68ed5a2"><ac:parameter ac:name="">Kerrighan 88</ac:parameter></ac:structured-macro>
\[Kerrighan 88\] Kerrighan, B. W. & Ritchie, D. M. _The C Programming Language, 2nd ed._ Englewood Cliffs, NJ: Prentice-Hall, 1988.

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="c2303f4f94f242be-530d23aa-419a4f3a-b41098d9-568a66c586271975b26f3114"><ac:parameter ac:name="">Kettle 03</ac:parameter></ac:structured-macro>
\[Kettlewell 03\] Kettlewell, Richard. [_Inline Functions In C_|http://www.greenend.org.uk/rjk/2003/03/inline.html] (March 2003). 

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="5a8d651944b39eba-e43d9757-402c491a-91119f0f-ccd2a907ef249e018b8b36a3"><ac:parameter ac:name="">Klein 02</ac:parameter></ac:structured-macro>
\[Klein 02\] Klein, Jack. [_Bullet Proof Integer Input Using strtol()_|http://home.att.net/~jackklein/c/code/strtol.html] (2002).

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="9953ab4481146dba-2efad285-47644d51-9b6b98af-e6e867d12fe71ad4c26866e2"><ac:parameter ac:name="">mercy</ac:parameter></ac:structured-macro>
\[mercy\] mercy. [_Exploiting Uninitialized Data_|http://www.felinemenace.org/papers/UBehavior.zip] (January 2006).

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="f7d2d0dab15ad633-4ea8dd82-40fc4522-be4a9e07-db72296940c6119106183172"><ac:parameter ac:name="">MISRA 04</ac:parameter></ac:structured-macro>
\[MISRA 04\] MIRA Limited. "[MISRA C|http://www.misra.org.uk/]: 2004 Guidelines for the Use of the C Language in Critical Systems." Warwickshire, UK: MIRA Limited, October 2004 (ISBN 095241564X).

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="c50430048f084f8c-b055d081-4f07475e-a0ba8f47-26e243ee096a93a09c19af04"><ac:parameter ac:name="">NASA-GB-1740.13</ac:parameter></ac:structured-macro>
\[NASA-GB-1740.13\] NASA Glenn Research Center, Office of Safety Assurance Technologies. [_NASA Software Safety Guidebook_|http://pbma.nasa.gov/docs/public/pbma/general/guidbook.doc] (NASA-GB-1740.13).

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="1a5eadc38055502f-4e4e4ee0-474848ca-859d8827-863c93902eb5d5d459bd22e8"><ac:parameter ac:name="">NIST 06</ac:parameter></ac:structured-macro>
\[NIST 06\] NIST. [_SAMATE Reference Dataset_|http://samate.nist.gov/SRD/] (2006).

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="fb3f0bea91982dd7-0bc23c08-458f4ee0-89969a66-ff72b59e9e59c954ccbedfff"><ac:parameter ac:name="">Open Group 97</ac:parameter></ac:structured-macro>
\[Open Group 97\] The Open Group. [_The Single UNIX ® Specification, Version 2_|http://www.opengroup.org/pubs/online/7908799/xsh/readlink.html] (1997).

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="0492aa59963153e7-a33adc14-4fef4d71-b8da8cee-74d865fac7c54c0a87db0c47"><ac:parameter ac:name="">Open Group 04a</ac:parameter></ac:structured-macro>
\[Open Group 04a\] The Open Group. "[readlink|http://www.opengroup.org/onlinepubs/000095399/functions/readlink.html]." _The Open Group Base Specifications Issue 6, IEEE Std 1003.1, 2004 Edition_ (2004).

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="2ad679d89c1bacad-5239b54a-44b44224-b6caa748-919e5abbe8c7caada91e073e"><ac:parameter ac:name="">Open Group 04b</ac:parameter></ac:structured-macro>
\[Open Group 04b\] The Open Group. "[realpath|http://www.opengroup.org/onlinepubs/009695399/functions/realpath.html]." The Open Group Base Specifications Issue 6, IEEE Std 1003.1, 2004 Edition\_ (2004).

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="a002714ab9702c5e-7004be5e-4d1b4cf1-9a519d97-27dfa51bae5a3b9bea3decc1"><ac:parameter ac:name="">Open Group 04c</ac:parameter></ac:structured-macro>
\[Open Group 04c\] The Open Group. "[open|http://www.opengroup.org/onlinepubs/009695399/functions/open.html]." The Open Group Base Specifications Issue 6, IEEE Std 1003.1, 2004 Edition\_ (2004).

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="79902d0270db7380-68c0cf64-4cc0450c-a1788fdd-21b39a0c976f2879e475efa9"><ac:parameter ac:name="">Plum 89</ac:parameter></ac:structured-macro>
\[Plum 89\] Plum, Thomas. _C Programming Guidelines, 2nd ed_. Kamuela, HI: Plum Hall, Inc., 1989 (ISBN 0911537074).

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="66463245714649a0-e928d86e-4dd44bff-a457a2b4-f11e76688a3298c09af4feb9"><ac:parameter ac:name="">Plum 91</ac:parameter></ac:structured-macro>
\[Plum 91\] Plum, Thomas. _C+\+ Programming_. Kamuela, HI: Plum Hall, Inc., 1991 (ISBN 0911537104).

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="d2070a058b2447a5-1e2ed7b2-45ce49f6-baa6b32c-c0f43664d7389616a3342339"><ac:parameter ac:name="">Saks 99</ac:parameter></ac:structured-macro>
\[Saks 99\] Dan Saks. _const T vs.T const_. Embedded Systems Programming. Pg. 13-16. February 1999. [http://www.dansaks.com/articles/1999-02%20const%20T%20vs%20T%20const.pdf]

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="7760d7017b9c21cf-90eb1a05-4e094542-a40d92aa-6771e6c450355c632e69e9e9"><ac:parameter ac:name="">Seacord 05</ac:parameter></ac:structured-macro> <ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="1110709680923f3a-ff246fd8-4ec54ad9-a3c584aa-e057702b9c0ee42cb413baee"><ac:parameter ac:name="">Seacord 05a</ac:parameter></ac:structured-macro>
\[Seacord 05a\] Seacord, R. _Secure Coding in C and C+\+_. Boston, MA: Addison-Wesley, 2005. See [http://www.cert.org/books/secure-coding] for news and errata.

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="ce2c2b39ba9f69f5-02d656be-42bb470c-821a8088-38a192d01d3424a095da8c35"><ac:parameter ac:name="">Seacord 05b</ac:parameter></ac:structured-macro>
\[Seacord 05b\] Seacord, R. "Managed String Library for C, C/C++." _Users Journal_ _23_, 10 (October 2005): 30-34.

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="a2d1840e475160da-26e59e9a-4a6e435c-8ce4b660-0ad67bd765012f1f7db9954a"><ac:parameter ac:name="">Summit 95</ac:parameter></ac:structured-macro>
\[Summit 95\] Summit, Steve. _C Programming FAQs: Frequently Asked Questions_. Boston, MA: Addison-Wesley, 1995 (ISBN 0201845199).

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="48eb01dec8c973f3-7e6dc554-42fe4a73-898b9528-7bc5b47b78193a6e62eb02ad"><ac:parameter ac:name="">Summit 05</ac:parameter></ac:structured-macro>
\[Summit 05\] Summit, Steve. [_comp.lang.c Frequently Asked Questions_|http://c-faq.com/] (2005).

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="07819961b8fd200e-8a833d7e-47574aec-9daf8190-cfc2f23f4ecd4cfd9750c6e0"><ac:parameter ac:name="">Viega 03</ac:parameter></ac:structured-macro>
\[Viega 03\] Viega, John & Messier, Matt. _Secure Programming Cookbook for C and C++: Recipes for Cryptography, Authentication, Networking, Input Validation & More_. Sebastopol, CA: O'Reilly, 2003 (ISBN 0-596-00394-3).

<ac:structured-macro ac:name="anchor" ac:schema-version="1" ac:macro-id="91bdbf4861b02e7c-42e12ee7-4cd24790-9ab79a3e-0a778967c2266e580b5fc2d9"><ac:parameter ac:name="">Warren 02</ac:parameter></ac:structured-macro>
\[Warren 02\] Warren, Henry S. _Hacker's Delight_. Boston, MA: Addison Wesley Professional. 2002 (ISBN 0201914654).