International Standard
ISO/IEC TR 24772-1:2019
Programming languages — Guidance to avoiding vulnerabilities in programming languages — Part 1: Language-independent guidance
Reference number
ISO/IEC TR 24772-1:2019
Edition 1
2019-12
© ISO 2024
International Standard
Read sample
Published (Edition 1, 2019)

ISO/IEC TR 24772-1:2019

Format
Language
CHF 216
Convert Swiss francs (CHF) to your currency

Abstract

This document specifies software programming language vulnerabilities to be avoided in the development of systems where assured behaviour is required for security, safety, mission-critical and business-critical software. Language-specific descriptions of these vulnerabilities are provided in other parts of the ISO/IEC 24772 series.

It is applicable to the software developed, reviewed, or maintained for any application.

This document does not address software engineering and management issues such as how to design and implement programs, use configuration management tools, use managerial processes, and perform process improvement. Furthermore, the specification of properties and applications to be assured are not treated.

Vulnerabilities are described in a generic manner that is applicable to a broad range of programming languages.

General information

  • Status
     : Published
    Publication date
     : 2019-12
    Stage
    : International Standard to be revised [90.92]
  • Edition
     : 1
    Number of pages
     : 166
  • Technical Committee :
    ISO/IEC JTC 1/SC 22
    ICS :
    35.060 
  • RSS updates

Life cycle

Got a question?

Check out our FAQs

Customer care
+41 22 749 08 88

Opening hours:
Monday to Friday - 09:00-12:00, 14:00-17:00 (UTC+1)

  2. Store
  3. Standards catalogue
  4. ICS
  5. 35
  6. 35.060
  7. ISO/IEC TR 24772-1:2019