Skip to main content
assistive.skiplink.to.breadcrumbs
assistive.skiplink.to.header.menu
assistive.skiplink.to.action.menu
assistive.skiplink.to.quick.search

13. Application Programming Interfaces (API)

Created by Robert Seacord, last modified by Masaki Kubo on Jan 04, 2010

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Warning

This section is under construction.

Recommendations

API00-C. Functions should validate their parameters

API02-C. Functions that read or write to or from an array should take an argument to specify the source or target size

API03-C. Create consistent interfaces and capabilities across related functions

API04-C. Provide a consistent and usable error checking mechanism

API05-C. Support compile-time checking

API06-C. Make failures obvious

API07-C. Enforce type safety

API08-C. Protect header prototypes from misinterpretation

API09-C. Compatible values should have the same type

Rules

Risk Assessment Summary

Recommendation	Severity	Likelihood	Remediation Cost	Priority	Level
API00-C	medium	probable	medium	P8	L2

Rule	Severity	Likelihood	Remediation Cost	Priority	Level
API30-C	medium	unlikely	low	P6	L2

CERT C Secure Coding Standard APP00-C. Functions should validate their parameters

No labels