Issue No.06 - November/December (2005 vol.3)
Katrina Tsipenyuk , Fortify Software
Brian Chess , Fortify Software
Gary McGraw , Cigital
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MSP.2005.159
Taxonomies can help software developers and security practitioners understand the common coding mistakes that affect security. The goal is to help developers avoid making these mistakes and more readily identify security problems whenever possible. Because developers today are by and large unaware of the security problems they can (unknowingly) introduce into code, a taxonomy of coding errors should provide a real tangible benefit to the software security community.
kingdom, phyla, taxonomy, errors
Katrina Tsipenyuk, Brian Chess, Gary McGraw, "Seven Pernicious Kingdoms: A Taxonomy of Software Security Errors", IEEE Security & Privacy, vol.3, no. 6, pp. 81-84, November/December 2005, doi:10.1109/MSP.2005.159