Get full access to Hands-On Security in DevOps and 60K+ other titles, with a free 10-day trial of O'Reilly.

There are also live events, courses curated by job role, and more.

Secure coding industry best practices

Secure coding is the foundation of secure software. We have done threat modeling and secure architecture design. These require secure coding to make them happen. Secure coding can be a challenge for the development team since developers are occupied with working on new features, and there may be hundreds of secure coding rules to learn. Before we discuss secure coding practices in more detail, we will review existing secure coding standards we can refer to.

Depending on programming languages, secure coding standards are summarized in the following table:

Reference standards	Description and reference
CERT Secure Coding	This provides secure coding standards for C, C++, Java, Perl, and Android. ...

Get Hands-On Security in DevOps now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Don’t leave empty-handed

Get Mark Richards’s Software Architecture Patterns ebook to better understand how to design components—and how they should interact.

It’s yours, free.

Get it now

Check it out now on O’Reilly

Dive in for free with a 10-day trial of the O’Reilly learning platform—then explore all the other resources our members count on to build skills and solve problems every day.

Start your free trial Become a member now