...
- Violation of the coding practice will result in a security flaw that may result in an exploitable vulnerability.
- There is an enumerable a denumerable set of exceptional conditions (or no such conditions) in conditions for which violating the coding practice is necessary to ensure the correct behavior for the program.
- Conformance to the coding practice can be verified.determined through automated analysis, formal methods, or manual inspection
techniques.
Conformance to secure coding rules must be demonstrated Rules must be followed to claim compliance with this standard unless an exceptional condition exists. If an exceptional condition is claimed, the exception must correspond to a predefined exceptional condition and the application of this exception must be documented in the source code.
...