Crypto and Secret Management

Previous page
Table of content
Next page

Crypto and Secret Management

Check

Category

Chapter

No embedded secret data (EXE, DLL, registry, files, etc.)

9

Secret data is secured appropriately

9

Calls to memset/ZeroMemory on private data are not optimized away. If they are, replace with SecureZeroMemory.

9

No home-developed crypto code use CryptoAPI or System.Security.Cryptography

8

Random number generation reviewed

8

Password generation is random

8

RC4 code does not reuse an encryption key

8

RC4-encrypted data has integrity checking

8

No weak crypto (128-bit vs. 40-bit)

8


Previous page
Table of content
Next page
Writing Secure Code
Writing Secure Code, Second Edition
ISBN: 0735617228
EAN: 2147483647
Year: 2001
Pages: 286
Authors: Michael Howard, David LeBlanc
BUY ON AMAZON
Database Modeling with MicrosoftВ® Visio for Enterprise Architects (The Morgan Kaufmann Series in Data Management Systems)
Oracle Developer Forms Techniques
Cisco IP Communications Express: CallManager Express with Cisco Unity Express
WebLogic: The Definitive Guide
101 Microsoft Visual Basic .NET Applications
Sap Bw: a Step By Step Guide for Bw 2.0
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy