"www.plumhall.com/SSCC_MP_071b.pdf" - Latest 2-page overview of Safe-Secure Project
RELATED PROJECTS
"https://www.securecoding.cert.org/" The CERT/CC has just deployed a new web site dedicated to developing secure coding standards for the C programming language, C++, and eventually other programming languages.
"http://samate.nist.gov" SAMATE - Software Assurance Metrics And Tool Evaluation project. This project supports the Department of Homeland Security's Software Assurance Tools and R&D Requirements Identification Program. The objective of part 3, Technology (Tools and Requirements) is the identification, enhancement and development of software assurance tools. NIST is leading in (A) testing software evaluation tools, (B) measuring the effectiveness of tools, and (C) identifying gaps in tools and methods.
"http://www.aitcnet.org/isai/" ISO/IEC Project 22.24772: Guidance for Avoiding Vulnerabilities through Language Selection and Use.
http://cwe.mitre.org/ Common Weakness Enumeration - A community-developed dictionary of common software weaknesses. Each definition has its own page, so http://cwe.mitre.org/data/definitions/121.html provides definition 121, etc.
CONFERENCE PROCEEDINGS
"ASE-SSATTM-plum+keaton-proceedings.pdf" - "Plum and Keaton, Eliminating Buffer Overflows, Using the Compiler or a Standalone Tool" Workshop on Software Security Assurance Tools, Techniques, and Metrics (SSATTM)
PRESS COVERAGE
"www.plumhall.com/2004-12-30-NorthHawaiiNews.pdf" - "Local business wins state award"
"www.sdtimes.com/fullcolumn/column-20060115-03.html" - "SD Times, Larry O'Brien, Type Safety"
"www.cuj.com/documents/s=9960/cuj0602seacord/" - "C/C++ Users Journal, Robert C. Seacord, Validating C and C++ For Safety and Security"
WIKI WEBPAGE FOR TECHNICAL DETAILS
For in-depth technical details, obtain the URL, login and password for the Safe-Secure Wiki, by emailing your request to phi@plumhall.com .