How to Select and Implement the Right Secure Coding Standard

Once your organization has established the need for a secure coding standard and your static code analysis tools are purchased and ready to go, how do you know which coding standard makes the most sense for your project?

In this whitepaper, we’ll guide you through common coding standards, including CWE Top 25, the OWASP Top 10, SEI/CERT, and more. Then, learn when and how to implement them into your software development process.

How to Select and Implement the Right Secure Coding FINAL Standard_How to Select and Implement the Right Secure Coding Standard

A sound software engineering practice means developing high quality code that holds up to established best practices.

For certain products or markets, choosing which best practices to follow is mandated by industry standards that already exist. But where there aren’t established standards, it can be difficult to decide which approach to take. This paper has provided a brief overview of the various security standards and guidelines, and pragmatic advice on implementing a coding standard once it’s chosen.

About Parasoft

Parasoft’s software testing solutions support the entire software development process, from when the developer writes the first line of code all the way through unit and functional testing, to performance and security testing, leveraging simulated test environments along the way. Parasoft's unique analytics platform aggregates data from across all testing practices, providing insights up and down the testing pyramid to enable organizations to succeed in today's most strategic development initiatives, including Agile/DevOps, Continuous Testing, and the complexities of IoT. Parasoft’s automated software testing innovations fuel software development organizations, helping teams reduce the time, cost, and effort of delivering high-quality software to the market.