Hi All,
The White House Office of the National Cyber Director (ONCD) has urged the largest players in emerging technologies to adopt safer programming languages.
The advice was released as part of a new report titled "Back to the Building Blocks: A Path Toward Secure and Measurable Software."
The ONCD stated, "method manufacturers can use to reduce memory safety vulnerabilities is to secure one of the building blocks of cyberspace: the programming language. Using memory-safe programming languages can eliminate most memory safety errors."
The highest leverage method to reduce memory safety vulnerabilities is to secure one of the building blocks of cyberspace: the programming language. Using memory safe programming languages can eliminate most memory safety errors. While in some distinct situations, using a memory safe language may not be feasible – this report examines space systems as a unique edge case and identifies memory safe hardware and formal methods as complementary ways to achieve a similar outcome – in most cases, using a memory safe programming language is the most efficient way to substantially improve software security.
------------------------------
Michael Roza CPA, CISA, CIA, CC, MBA, Exec MBA, CSA Research Fe
------------------------------