You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 9 Next »

Security is one of many system attributes that must be considered in the selection and application of a coding standard. Other attributes of interest include safety, portability, reliability, availability, maintainability, readability, and performance.

Many of these attributes are interrelated in interesting ways.  For example, readability is an attribute of maintainability; both are important for limiting the introduction of defects during maintenance that could result in security flaws or reliability issues.  In addition, readability facilitates code inspection by safety officers.  Reliability and availability require proper resources management, which also contributes to the safety and security of the system. System attributes such as performance and security are often in conflict, requiring tradeoffs to be considered. 

The purpose of the secure coding standard is to promote software security.  However, because of the relationship between security and other system attributes, the coding standards may provide recommendations that deal primarily with some other system attribute that also has a significant impact on security. The dual nature of these recommendations will be noted in the standard.


      00. Introduction       Priority and Levels

  • No labels