C++ guru Herb Sutter writes about how we can improve the programming language for better security.

The immediate problem “is” that it’s Too Easy By Default™ to write security and safety vulnerabilities in C++ that would have been caught by stricter enforcement of known rules for type, bounds, initialization, and lifetime language safety.

His conclusion:

We need to improve software security and software safety across the industry, especially by improving programming language safety in C and C++, and in C++ a 98% improvement in the four most common problem areas is achievable in the medium term. But if we focus on programming language safety alone, we may find ourselves fighting yesterday’s war and missing larger past and future security dangers that affect software written in any language.

Leave a Reply

Your email address will not be published. Required fields are marked *

Explore More

Operation Cronos: Who Are the LockBit Admins

February 23, 2024 0 Comments 0 tags

Law enforcement agencies involved in Operation Cronos have announced they have been in contact with the LockBit kingpin aka LockbitSupp

Industrial Cyber Espionage France’s Top Threat Ahead of 2024 Paris Olympics

February 27, 2024 0 Comments 0 tags

Ransomware and destabilization attacks rose in 2023, yet France’s National Cybersecurity Agency is most concerned about a diversification of cyber espionage campaigns

Nearly 13 Million Secrets Spilled Via Public GitHub Repositories

March 13, 2024 0 Comments 0 tags

GitGuardian claims the number of secrets exposed via GitHub has quadrupled since 2021