ISO/IEC TS 17961:2013

Information technology — Programming languages, their environments and system software interfaces — C secure coding rules

Publication date:   Nov 15, 2013

General information

90.93 Standard confirmed   Sep 3, 2024

ISO/IEC

ISO/IEC JTC 1/SC 22 Programming languages, their environments and system software interfaces

Technical Specification

35.060   Languages used in information technology

Buying

  Published

PDF - €234.74

  English  



Buy

Scope

ISO/IEC TS 17961:2013 specifies

rules for secure coding in the C programming language, and
code examples.

ISO/IEC TS 17961:2013 does not specify

the mechanism by which these rules are enforced, or
any particular coding style to be enforced.

Each rule in this Technical Specification is accompanied by code examples. Two distinct kinds of examples are provided:

noncompliant examples demonstrating language constructs that have weaknesses with potentially exploitable security implications; such examples are expected to elicit a diagnostic from a conforming analyzer for the affected language construct; and
compliant examples are expected not to elicit a diagnostic.

Life cycle

NOW

PUBLISHED
ISO/IEC TS 17961:2013
90.93 Standard confirmed
Sep 3, 2024

CORRIGENDA / AMENDMENTS

PUBLISHED
ISO/IEC TS 17961:2013/Cor 1:2016