Page History

...

Depending on the fonts used, certain characters appear visually similar or even identical:

Character	Similar Characters
`0` (zero)	`O` (capital `o`), `Q` (capital `q`), `D` (capital `d`)
`1` (one)	`I` (capital `i`), `l` (lowercase `L`)
`2` (two)	`Z` (capital `z`)
`5` (five)	`S` (capital `s`)
`8` (eight)	`B` (capital `b`)
`n` (lowercase `N`)	`h` (lowercase `H`)
`m (lowercase M)`	`rn (lowercase R, lowercase N)`

Do not define multiple identifiers that vary only with respect to one or more visually similar characters.

...

Failing to use visually distinct identifiers can result in referencing the wrong object or function, causing unintended program behavior.

Recommendation	Severity	Likelihood	Remediation Cost	Priority	Level
DCL02-C	Low	Unlikely	Medium	P2	L3

Automated Detection

Tool

Version

Checker

Description

CodeSonar

Include Page

	CodeSonar_V
	CodeSonar_V

LANG.ID.AMBIG

Typographically ambiguous identifiers

Compass/ROSE

ECLAIR

Include Page

	ECLAIR_V
	ECLAIR_V

CC2.DCL02

Fully implemented

LDRA tool suite

Include Page

	LDRA_V
	LDRA_V

67 X

Fully implemented

Parasoft C/C++test

Include Page

c:

	Parasoft_V

c:

	Parasoft_V

NAMING-44

Partially implemented

Implemented

Related Vulnerabilities

Search for vulnerabilities resulting from the violation of this rule on the CERT website.

Related Guidelines

SEI CERT C++ Coding Standard	VOID DCL02-CPP. Use visually distinct identifiers
ISO/IEC TR 24772:2013	Choice of Clear Names [NAI]
MISRA C:2012	Directive 4.5 (advisory)

...

Space shortcuts

Page tree

Versions Compared

Old Version 129

New Version 130

Key

Automated Detection

Related Vulnerabilities

Related Guidelines