EFY Times  
Thursday, November 26, 2015

10 Tips For Developers To Secure And Safeguard Code
Home >> Infotech >> Features
10 Tips For Developers To Secure And Safeguard Code  
EFYTimes takes a look at some ways programmers can safeguard their code.   
Rate this news:  (0 Votes)
Friday, November 15, 2013 With the increasing number of breaches in security with respect to credit card, mobile etc it is becoming imperative that we do all that we can to safeguard our property. So is the case with software developers.

Security, Code, Developers, Safeguarding, Breaches, Inputs, Avoid, Passwords,  Delays, Storing.

As cited on cio.com, here are 10 things they can do to keep their codes secure -

1. Testing inputs rigorously - Attackers require a path into your machines, and the easiest path is via the doors your code opens. In the event that your software derives input from the Internet, you are likely to have something come past you. You must ensure to test the size and structure of the incoming data and never rely on the person on the other end of the Internet.

2. Storing only what you require, and not a bit more – You must rethink regarding where to store your home or business addresses for sending emails. This time up a lot of time to process as well as disk space and makes an attractive target for information thieves. Whenever in doubt you must make the forms shorter and the database tables smaller.

3. Avoid over- reliance on passwords - Everyone is aware of the issue with passwords with no one having a better solution. You can add security by using special hardware that locks up cryptographic keys. They may be costly but easier to lose than a cellphone.

4. Negotiating requirements – Making secure code is not just something that happens in the code editor. A feature may be great but it may induce you to take stock of extra sensitive information and increase the level of security required everywhere. The apt time for securing your code against future breaches is when the requirements document is still flexible.

5. Adding delays to your code -Many attacks rely on sending millions of queries while others on trying trillions of passwords till the right one is found. You must add progressively more delays to confound these bots. You need to have your software to be fast enough to support the right humans but very slow for attacking bots to accomplish much.

6. Using encryption more frequently than you should -Encryption is often underutilized as it adds yet another step to the machinery and makes debugging that much harder. You must lock up personal data before storing it in the database to save you from a lot of worries.

7. Constructing walls – User friendliness should not lead to linking everything to a single portal. There is no simple way to decide how simple it should be for a user to navigate through the system and get what they want with a click. The easier it is for the legitimate user, the easier it is for the attackers.

8. Testing libraries -- Encryption is difficult to perfect and even the best theory and carefully built code can come with gaps. It is important to have well-tested libraries in this area than others. You must opt for a better code here and not inventing your own algorithms.

9. Using internal APIs - APIs is an old more valuable for security as it can make it simpler to audit interactions, find holes, and fix problems. It is logical to make internal sub-modules and the same idea applies inside of modules as well. Parts are easy to analyze.

10. Bringing outside auditors to critique your code - If an enterprise invests in a well-designed base, it should also invest in code audits that can identify flaws and give suggestions for improving the code.

Print Email Post Comment 
(Total Views: 2266)

Infotech News
Dubai Gears Up For The Internet Of Things World Forum 2015
Tata Consultancy Services And Gfi Informatique Sign A Strategic Agreement To Accelerate Smart Cities Programs In France
Case Study Launched On ‘World Of Difference’Corporate Responsibility Programme Of Vodafone Foundation In India
Konica Minolta Wins Good Design Award For A3 Monochrome MFP
Infosys Finacle Teams With Oracle To Offer Finacle On Oracle Cloud
Most popular


Samsung Pay Adds Eight More Credit And Debit Card Issuers Including Chase
Research And Markets: Global Aerospace Components Aviation Security Market 2015-2019
Global cPDM Market In The Automotive Sector: Research Analysis 2015-2019 - Key Vendors Are Dassault Systèmes, PTC & Siemens PLM Software
Mitsubishi Electric And CSULB Students Install Solar Systems For Two Los Angeles Families In Need
Power Management IC Market 2015-2019 - Key Vendors Are Fairchild Semiconductor, Freescale Semiconductor, Qualcomm, ROHM, STMicroelectronics & TI
The Robot Cameraman Grows Up: SOLOSHOT3 Launches Major New Camera Category
Axis Introduces An Affordable Bullet-Style Outdoor Network Thermal Camera With Powerful Performance For Analytics Via ACAP
Photronics Receives TowerJazz’s 2015 “Best Mask Shop” Supplier Of The Year Award
Research And Markets: Global And Chinese NdFeB Industry Report 2015-2018
PayUmoney Hits Another Milestone With Its Latest And Extensive Merchant Base Of Over A Lakh



Top 5 Smartphones That You Can Buy Under Rs 7,000
Are you planning to buy a mid-range smartphone with good performance? Here are your choices!...
13 Run Prompt Shortcuts That You Must Know
Run commands can save lot of your time and help you troubleshoot, customize your Windows....
5 Most Powerful People In Tech World
Here are some personalities, who are most influential in technology landscape....
Top 5 Products Open Sourced By Tech Giants
Releasing internal products to the open-source community is the new trend followed by technology giants....
Top 10 Interesting Facts About Microsoft Windows
World's largest operating system just turned 30 years old....
Top 5 Phones With 3GB RAM Under Rs 15,000
Here are top 5 affordable performance phones that you can buy today....
8 Hidden Features Of iOS 9
Find out 8 interesting things you didn't know you could do with your iPhone....
Here's How You Can Get New Google+
Google has pushed a newly designed version of it's social networking platform for users....
15 Toughest Questions Asked In Apple Interview
Eying for your dream job at Apple? Find out how many questions you can answer....
6 Things You May Not Know About Google Nexus 5X
Google's latest flagship Nexus device starts at Rs 31,900/-...
6 Reasons Snapdragon 820 Will Change Smartphones In 2016
The chip manufacturing industry leader, Qualcomm has unveiled it's next generation smartphone processor....
Top 5 Personal Safety Apps For Emergency Situations
Here are five simpler ways to get help in panic situations....
5 Reasons To Delete Your Facebook Account
How concerned are you about your online privacy?...
Top 5 Android Smartphones That You Can Buy Today!
Looking to buy mid-range Android smartphone? Here are your top 5 choices....
5 Biggest Misconceptions About Facebook
Internet is full of myths about biggest social network on the planet. ...
  View All
Meet Pranjal Saxena, India's 21 Year Old Electronics Wizard
Milan Ondhia of EFYTimes was in a forthright conversation with the 21 year old Pranjal Saxena from New Delhi; an aspirant at the WorldSkills meet, in ...
“We Offer Managed Document Solutions To CIO And IT Decision Makers”: Canon
Manufacturing within the country will surely reduce the cost of our devices, but manufacturing can begin only if there is the desired eco-system and w...
“One Day The End User Can Open Up A Used Battery, And Use What’s Inside As Barbecue Sauce”
Of course that is not something currently possible, but what B&B Batteries does have are some secret recipes for their very specialised battery design...
We Wish To Procure All The LED Components Within India: Avni Energy
G. Gururaja, director, Avni Energy Solutions Pvt Ltd, shares his views about the expanding LED industry in the Indian market and the company's plans i...
We Have Registered 50 Per Cent Growth In The Last Two Years: Arihant Lighting
Apart from LEDs, Arihant is associated with the promotion of renewable energy in India and therefore, manufactures various energy saving products....
  View All
First Look: LG Optimus G
The phone sports a high-end display and comes powered by a powerful processor. ...
Create QR-Codes For Free
TEC-IT releases the freeware QR-Code Studio to provide a quick and convenient way of QR code creation for every application scenario....
DoT Secretary Shares Plans For Growth Of Telecom Sector
M.F. Farooqui has recently taken charge as secretary, Department of Telecom....
Hands-On: Sony Xperia Z
Xperia Z is Sony's first entrant model in the big-screen smartphone category. ...
Hands On: Videocon A30 Smartphone
Videocon, the consumer electronics company which is known for its refrigerators, washing machine and air-conditioner has unveiled its Android-based sm...
View All
IFA 2014
IFA 2014: LG Launches 34-Inches Curved Monitor
The company is yet to confirm price and availability of the device....
IFA 2014: Intel Launches First Core M Range Of Processors
This range of processors is tailor-made for 2-in-1 devices which include a tablet and a laptop....
MWC 2014: Tablet Lets People Feel Textures On Its Screen
Now feel what you see on your tablet, by way of ultrasonic waves....
MWC 2014: 4K Android Tablet Games To Kill Consoles, iPad
Tablet makers like Samsung want to beat the iPad by making 4K tabs. ...
MWC 2014: This Vodafone Backpack Helps Get Network In Disaster Situations
Two engineers of Vodafone New Zealand displayed the "mini" mobile network by Vodafone substructure in a backpack. ...
MWC 2014: Wilocity Chipset To Bring 'Lightening' Speed To Mobile Phones
Wilocity has developed a WiGig chipset for mobile phones that will bring lightning-fast wireless capability ...
MWC 2014: Samsung Introduces Octacore, Hexacore Chipsets
The Korean giant, Samsung unveiled two new octacore and hexacore chipsets at MWC 2014, in Barcelona. The company previously used Exynos 5 Octa 5410 ch...
View All
19th Consumer Electronic Imaging Fair To Be Held On ...

View All

home archives contact us advertise with us
Magazines Portals Directories Events News Verticals Educational Institute  
Electronics for You
Open Source for You
Electronics Bazaar
Electronics Annual Guide
EFY Awards
Linux & Open Source
Consumer Electronics
Science & Technology
EFY Techcenter

Educational Kits
© Copyright 2015 EFY Enterprises Pvt. Ltd.
All rights reserved. Reproduction in whole or in part in any form or medium without written permission is prohibited.
Usage of the content from the web site is subject to Terms and Conditions