Crypto and Secret Management

Previous page
Table of content
Next page

Crypto and Secret Management

Check

Category

Chapter

No embedded secret data (EXE, DLL, registry, files, etc.)

9

Secret data is secured appropriately

9

Calls to memset/ZeroMemory on private data are not optimized away. If they are, replace with SecureZeroMemory.

9

No home-developed crypto code use CryptoAPI or System.Security.Cryptography

8

Random number generation reviewed

8

Password generation is random

8

RC4 code does not reuse an encryption key

8

RC4-encrypted data has integrity checking

8

No weak crypto (128-bit vs. 40-bit)

8


Previous page
Table of content
Next page
Writing Secure Code
Writing Secure Code, Second Edition
ISBN: 0735617228
EAN: 2147483647
Year: 2001
Pages: 286
Authors: Michael Howard, David LeBlanc
BUY ON AMAZON
High-Speed Signal Propagation[c] Advanced Black Magic
A+ Fast Pass
The New Solution Selling: The Revolutionary Sales Process That Is Changing the Way People Sell [NEW SOLUTION SELLING 2/E]
802.11 Wireless Networks: The Definitive Guide, Second Edition
Cultural Imperative: Global Trends in the 21st Century
Digital Character Animation 3 (No. 3)
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy