Part 9 - Secure development
In order to save a lot of time in code auditing, developers must follow coding guidelines.
Secure build
Kernel build
Tools like:
| Domain | Improvement |
|---|---|
| SecureDev-SecureBuild-1 | Add content. |
App/Widget signatures
| Domain | Improvement |
|---|---|
| SecureDev-Signatures-1 | Add content. |
Code audit
These tools are used to check the correct implementation of functionalities and compliance with related good practices.
| Domain | Improvement |
|---|---|
| SecureDev-CodeAudit-1 | Add CVE analyser. |
| SecureDev-CodeAudit-2 | OSSTMM. |
SATS
- RATS (Maybe to old).
It is necessary to verify that the application code does not use functions that are depreciated and recognized as unsecured or cause problems.