SecureProgramming.com

Posted by Matt Messier on Sun, Jan 30, 2005 (06:33 PM) GMT

SafeStr v1.0.3 and XXL v1.0.1 have finally been released today. It's been far too long since the last release was made of either of these libraries, but better late than never I suppose. The...

Comparing Java and .NET security

Posted by John Viega on Sat, Jan 31, 2004 (06:07 AM) GMT

O'Reilly's DevCenter has posted three articles comparing Java and .NET security, with a fourth one coming in February. We'll update this story when the fourth article is available.

Preventing Integer Overflows in C++

Posted by John Viega on Thu, Jan 22, 2004 (10:44 PM) GMT

David LeBlanc, co-author of Writing Secure Code, has put together a C++ class to help developers avoid integer overflow errors. In addition, he wrote an article that is a lucid introduction t...

Posted by John Viega on Wed, Oct 08, 2003 (06:07 PM) GMT

Hey, we got reviewed on slashdot. Thanks for the positive review.

First SPC for C and C++ review

Posted by John Viega on Tue, Sep 16, 2003 (10:41 AM) GMT

Dan Weeks wrote the first published review of the book we've seen so far.

How much does the programming language matter?

Posted by John Viega on Mon, Sep 15, 2003 (07:59 AM) GMT

We've now been slashdotted. After lowering the idle connection timeout from hours to minutes, we're doing fine (famous last words). The comments are full of "C sucks" rants. I tho...

Contest: Submit the best recipe

Posted by John Viega on Sat, Sep 13, 2003 (11:31 PM) GMT

One of the goals of SecureProgramming.com is to provide recipes demonstrating good secure programming techniques (particularly ones supplementing our books). Anyone can submit these recipes.

: Modern Cryptography: Theory and Practice

Posted by John Viega on Sat, Sep 13, 2003 (11:09 PM) GMT

Modern Cryptography is by far the best first text on cryptography I've ever seen, blowing books like Applied Cryptography out of the water. It's a clear treatment that focuses on building pra...

SafeStr 1.0.0 Released

Posted by Matt Messier on Wed, Sep 10, 2003 (09:19 PM) GMT

SafeStr 1.0.0 has been released, and is available from zork.org. The goal of the SafeStr library is to provide a rich string-handling library for C that has safe semantics yet interoperates w...

Welcome to SecureProgramming.com

Posted by Matt Messier on Sun, Aug 31, 2003 (07:04 AM) GMT

Welcome to SecureProgramming.com!

All trademarks and copyrights on this page are owned by their respective owners. Copyrights on submitted material are copyrighted by the submitter. Everything else is Copyright © 2003 by John Viega and Matt Messier. Click here for licensing information regarding the use of recipes on this site and from The Secure Programming Cookbook for C and C++.