Some “Secure Programming” Exercises for an Introductory Programming Class - Inria - Institut national de recherche en sciences et technologies du numérique Accéder directement au contenu
Communication Dans Un Congrès Année : 2013

Some “Secure Programming” Exercises for an Introductory Programming Class

Matt Bishop
  • Fonction : Auteur
  • PersonId : 983911

Résumé

Ideally, computer security should be an integral part of all programming courses. Beginning programming classes pose a particular challenge, because the students are learning basic concepts of programming. Thus, teaching them about buffer overflows as security problems, requiring an explanation of concepts such as “smashing the stack,” will confuse students more than motivate them to check array bounds. Advanced concepts such as race conditions require more background than the students have, or will have, when taking introductory programming classes. An alternate approach is to teach the underlying concepts of robust programming; preventing crashes or errors is central to such a course. This paper presents some exercises that illustrate this approach, and some thoughts on what constitutes “secure programming”.
Fichier principal
Vignette du fichier
978-3-642-39377-8_26_Chapter.pdf (290.42 Ko) Télécharger le fichier
Origine : Fichiers produits par l'(les) auteur(s)
Loading...

Dates et versions

hal-01463642 , version 1 (09-02-2017)

Licence

Paternité

Identifiants

Citer

Matt Bishop. Some “Secure Programming” Exercises for an Introductory Programming Class. 8th World Conference on Information Security Education (WISE), Jul 2009, Bento Gonçalves, Brazil. pp.226-232, ⟨10.1007/978-3-642-39377-8_26⟩. ⟨hal-01463642⟩
86 Consultations
140 Téléchargements

Altmetric

Partager

Gmail Facebook X LinkedIn More