Checklist

Checklist: Ten dos and don'ts for secure coding

Do validate all user input
Do escape input values
Do fail Safe
Do treat sensitive security information with care
Do practice defense-in-depth
Don't provide hints to hackers
Don't add comments telling what the code does; say why the code does what it does
Do study code patterns
Do make (code) buddies
Don't just fix defects, study them

Download this checklist (PDF)


This was first published in March 2006

There are Comments. Add yours.

 
TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: