Question

In: Computer Science

Are there specific rules or industry standards for writing security code?

Are there specific rules or industry standards for writing security code?

Solutions

Expert Solution

There is no such industrial Standards for writing security codes, firstly because declaring a standard to all security code make it vulnerable even more if someone finds a way around.

Second the security codes are not having anything other then a different application compared to other purpose,

But yes there are some principles which are commonly used by all security Developers like

1. Never Hard Code Login Credentials,it's a common mistake

2. Assignment of Names of Variables, and Files example the Cookies and Cache which is used to manipulate that to get login credentials, so using difficult to crack patterns and keep them changing etc

3. Permission and Authentication of the users and processes one allow on there software.

And there are more and more things one need to keep track, and it keeps adding as per the attacks and there success.

From coding principles yes but that's common for all of them, so if you consider them then yes, but there aren't any specific rules but it does try to prevent exploiting of the systems.


Related Solutions

explain the different levels of the PCI compliance (Payment Card Industry Security Standards Council) and what...
explain the different levels of the PCI compliance (Payment Card Industry Security Standards Council) and what needs to be done for a corporation to satisfy the PCI requirements for the Level 4 (small-to-medium sized business)
what are the genetic code rules
what are the genetic code rules
Please explain the need for standards/rules (not ethical rules) in the accounting practice and how they...
Please explain the need for standards/rules (not ethical rules) in the accounting practice and how they have evolved over time
What are “the two main rules” for business and organizational writing?
What are “the two main rules” for business and organizational writing?
Please discuss and explain PCIS (Payment Card Industry Standards). Please also discuss credit card security and...
Please discuss and explain PCIS (Payment Card Industry Standards). Please also discuss credit card security and give an example of a data/security breach involving an organization. What happened? What was done?
Explain standards and code sets
Explain standards and code sets
What is the Rules for writing patient notes in the medical interview guide
What is the Rules for writing patient notes in the medical interview guide
In python make a simple code. You are writing a code for a program that converts...
In python make a simple code. You are writing a code for a program that converts Celsius and Fahrenheit degrees together. The program should first ask the user in which unit they are entering the temperature degree (c or C for Celcius, and f or F for Fahrenheit). Then it should ask for the temperature and call the proper function to do the conversion and display the result in another unit. It should display the result with a proper message....
I'm writing a code for the Secant Method for root finding, but my code makes an...
I'm writing a code for the Secant Method for root finding, but my code makes an infinite code of the correct answer. Below is my code, how do I fix it? def f(x): return (x**6)+7*(x**5)-15*(x**4)-70*(x**3)+75*(x**2)+175*x-125 def secant(): p0=float(input('Enter an initial guess for the root ')) p1=float(input('Enter another guess ')) TOL=float(input('Enter a tolerance in decimal form ')) n=15 i=1 while i<=n: p=p1-f(p1)*(p1-p0)/(f(p1)-f(p0)) if abs(p-p1)<TOL: print(p) else: p0=p1 p1=p i=i+1 else: print(p) return p    print(secant())
White Paper about security in big data: ( technical Writing) limit the security part to one...
White Paper about security in big data: ( technical Writing) limit the security part to one specific measure or practice. If that isn't possible then go with the entire security protocol that is/may be followed. 1) What particular problem does your topic solve or need does your topic address? 2) Is your topic of interest to technicians or subject matter experts because it is innovative? Why or why not? 3) Is your topic of interest to managers because it provides...
ADVERTISEMENT
ADVERTISEMENT
ADVERTISEMENT