http://seaspin.org/forums/4.aspxEvents, happenings, gatherings, groups that would be of interest to SeaSpin membersenCommunityServer 2007.1 SP2 (Build: 31113.47)http://seaspin.org/forums/thread/289.aspxTue, 11 Aug 2009 14:23:28 GMTb4c6deec-53b0-4017-a9f0-6948777b892f:289visionary1usa0http://seaspin.org/forums/thread/289.aspxhttp://seaspin.org/forums/commentrss.aspx?SectionID=4&PostID=289<p>Thursday, Aug 13, 2009 1-2 p.m. EDT<br /><strong>Secure Coding</strong> by Robert Seacord </p> <p><a target="_blank" href="https://www1.gotomeeting.com/register/611307073" title="Register" class="null">Register</a></p> <p>It is a frequent yet unintended mistake among software developers. In copying a string in memory, they unwittingly create a vulnerability that can be used to execute malicious code by an attacker. </p> <p>The malicious code may be used to spread a worm, or insert a back door on a machine, steal a user&#39;s identity, or steal sensitive information. </p> <p>In fact, a recent study found that 64 percent of vulnerabilities in the National Vulnerability Database were the result of coding errors. </p> <p>Led by Robert Seacord, the Secure Coding Initiative (SCI) within CERT works with software developers and software development organizations to eliminate vulnerabilities resulting from coding errors before software becomes operational.&nbsp; SCI is developing secure coding standards for commonly used programming languages such as C, C++, and Java.&nbsp; These standards can be used to improve and assess the security and overall quality of software through training, automated analysis, code review, and other processes. </p> <p>To learn more about Robert&#39;s work and the Secure Coding Initiative at the SEI, <a target="_blank" href="https://www1.gotomeeting.com/register/611307073" title="sign up" class="null">sign up</a> for this webinar. </p>