>kloctalk | Code Review

Does a password tool’s encryption weakness highlight the need for more code review?

on May 14, 13 • in Code Review • with No Comments

A guessing technique that leverages a design flaw in the popular 1Password password manager tool has sparked widespread discussion about potential security consequences and appropriate approaches to encryption implementation. Cryptography experts have suggested that the actual danger is minimal but that the incident underscores the need for careful code review and better hashing functions
Read More »
What software security lessons can companies learn from open source projects?

on May 13, 13 • in Code Review • with No Comments

Open source software projects have long been celebrated for their role in driving innovation, their low cost to users, their potential for customization and more. At the same time, many people remain skeptical of the security of such projects, assuming that the total accessibility of the code makes it easier for attackers to find weaknesses or even actively implant malicious changes to the code base themselves
Read More »
Three peer code review practices to build better software

on May 6, 13 • in Code Review, Featured • with No Comments

A technique such as peer code review or even collaborative, paired coding can be an effective way to meet goals that are qualitative rather than quantitative
Read More »
Using code review and source code analysis to avoid software sabotage

on Apr 24, 13 • in Code Review • with No Comments

Approaches such as peer code review and static analysis software are generally focused on spotting and fixing unexpected or preventable flaws in the development process, but not every software security issue is necessarily the result of poorly executed design or oversight. Internal stakeholders have been known, on occasion, to sabotage programs in ways that either knowingly expose them to outside attackers or directly undermine relevant systems
Read More »
Experts say more emphasis needed on secure design with Java

on Apr 15, 13 • in Code Review • with No Comments

A steady stream of Java zero-days has kept the software at the center of security discussions in recent months, and experts suggested that these issues are likely to continue until a thorough code review has been performed
Read More »
Scientists work to prevent research retractions with code review

on Dec 11, 12 • in Code Review • with No Comments

As computer-driven data analysis has expanded the capabilities of scientific research, the practice has also increased the complexity of peer review for academic journals and raised questions about the quality of scientists' code
Read More »
Officials put emergency sirens in sleep mode after software glitch

on Dec 4, 12 • in Code Review • with No Comments

Every second counts in the event of an emergency
Read More »
Inventor of algorithmic trading calls for stronger software controls

on Dec 3, 12 • in Code Review • with No Comments

A series of recent market glitches has raised questions about the increasingly common practice of algorithmic trading
Read More »
Software defect prompts automobile safety concerns

on Oct 26, 12 • in Code Review • with No Comments

As the kind of buyers who choose to adopt a plug-in hybrid car, Chevrolet Volt owners may be more enthusiastic about the future of automotive technology than most
Read More »
Peer code review needed for safer stock trades

on Oct 24, 12 • in Code Review • with No Comments

At a recent Security and Exchange Commission (SEC) Technology Roundtable, participants discussed the necessity of having in place more rigorous peer code review for software used in trading and other financial transactions, MNI News reported
Read More »

1 2 3 4 »

Posts Tagged ‘Code Review’

Does a password tool’s encryption weakness highlight the need for more code review?

What software security lessons can companies learn from open source projects?

Three peer code review practices to build better software

Using code review and source code analysis to avoid software sabotage

Experts say more emphasis needed on secure design with Java

Scientists work to prevent research retractions with code review

Officials put emergency sirens in sleep mode after software glitch

Inventor of algorithmic trading calls for stronger software controls

Software defect prompts automobile safety concerns

Peer code review needed for safer stock trades

Categories

DevOps adoption grows as companies look to cut costs,...

What was the vulnerability that led to a $45...

Does a password tool’s encryption weakness highlight the need...

Honda recalls 44,000 Fit Sports due to software flaw

Are developers ready to embrace Android as a gaming...

How not to submit your software developer resume…

Static analysis for Ruby/Python

If you want users to RTFM, write a better...

JSR 305: a silver bullet or not a bullet...

Lessons learned in localization Part 1: Documentation pain

EE Times Europe: Automated source code analysis software underlines...

GM’s insourcing plan puts software development in the headlights

Getting employee buy-in for static analysis

Klocwork Announces Tips and Tricks Guide

Linksys router vulnerabilities could allow remote access

Follow @klocwork

Archives

Posts Tagged ‘Code Review’

Our Social Networks

Categories

Archives

>BlogRoll