Top 25 Programming Errors

Tweet Sans Institute, the largest information security firm in association with software and security giants including Microsoft, Symantec, McAfee, published a hot 25 programming errors under three categories: Insecure interaction between components (9) Risky resource management (9) Porous defenses (7) Insecure interaction between components CWE-20: Improper Input Validation CWE-116: Improper Encoding or Escaping of Output [...]

Code Contracts for .NET

Tweet Design by contract is a popular approach to designing software. This approach prescribes the software designers should define formal verifications, specification of every components in an application. These verifications and specifications should answer the following questions: What does it expect? What does it guarantee? What does it maintain? These can be achieved by contracts [...]