Writing Fast and Secure Code in C
Overview
Applications that were implemented using the C programming language have
experienced a constant flow of security vulnerabilities for more than 20 years.
Each year security researchers and hackers discover new code patterns in C
that lead to exploitable vulnerabilities. This raises the necessity that
programmers in a security sensitive environment are always up-to-date with
current research in secure programming.
In this paper I give an overview on common patterns that lead to vulnerabilities
and describe approaches to develop functionally equivalent and secure code. Furthermore, I show that secure string handling in C can be fast and elegant.
Target Audience
- Security Trainers
- Developers
- Testers
Writing Fast And Secure Code in C