ISO/IEC TR 24772:2013 specifies software programming language vulnerabilities to be avoided in the development of systems where assured behaviour is required for security, safety, mission-critical and business-critical software. In general, this guidance is applicable to the software developed, reviewed, or maintained for any application.
Vulnerabilities are described in a generic manner that is applicable to a broad range of programming languages.
Status : WithdrawnPublication date : 2013-03
Edition : 2Number of pages : 319
Technical Committee:Programming languages, their environments and system software interfaces