-1.6 C
New York
Wednesday, February 1, 2023

NSA Indirectly Implies that C And C++ Are Not Safe for Developers Anymore – Analytics Insight

Massive advancements in chip capabilities and the creation of supercomputers
Cybersecurity is booming, and the industry is facing a massive
It is obvious that robots are playing an increasingly critical
Massive advancements in chip capabilities and the creation of supercomputers
Investing in AI startups has dramatically grown, empowering the growth
The venture capitalists for emerging AI companies offer massive amounts
Disclaimer: The information provided in this article is solely the
Disclaimer: The information provided in this article is solely the
Disclaimer: The information provided in this article is solely the
Disclaimer: The information provided in this article is solely the
NSA is urging developers to shift to memory-safe programming languages – such as C#, Go, Java, Ruby, Rust, and Swift – to protect their code from remote code execution or other hacker attacks. Of the languages mentioned above, Java is the most widely used across the enterprise and Android app development, while Swift is a top 10 language, thanks in part to iOS app development. And there’s growing interest in Rust as a replacement for C and C++ in systems programming. “NSA advises organizations to consider making a strategic shift from programming languages that provide little or no inherent memory protection, such as C/C++, to a memory-safe language when possible. Some examples of memory-safe languages are C#, Go, Java, Ruby, and Swift,” the NSA said.
Microsoft, Google, and others have flagged vulnerabilities in codes due to memory safety issues and malicious cyber actors can exploit these vulnerabilities for remote code execution or other adverse effects, which can often compromise a device and be the first step in large-scale network intrusions. Commonly used languages, such as C and C++, provide a lot of freedom and flexibility in memory management while relying heavily on the programmer to perform the needed checks on memory references.
“Software analysis tools can detect many instances of memory management issues and operating environment options can also provide some protection, but inherent protections offered by memory-safe software languages can prevent or mitigate most memory management issues,” said the NSA. Even with a memory-safe language, memory management is not entirely memory safe. “Several mechanisms can be used to harden non-memory safe languages to make them more memory safe. Analyzing the software using static and dynamic application security testing (SAST and DAST) can identify memory use issues in software,” said the NSA.
“The compilation and execution environment can be used to make it more difficult for cyber actors to exploit memory management issues. Most of these added features focus on limiting where code can be executed in memory and making memory layout unpredictable,” the agency suggested.

Disclaimer: The information provided in this article is solely the author’s opinion and not investment advice – it is provided for educational purposes only. By using this, you agree that the information does not constitute any investment or financial instructions. Do conduct your own research and reach out to financial advisors before making any investment decisions.


800TRX


800TRX


800TRX


800TRX


800TRX


800TRX


800TRX

Massive advancements in chip capabilities and the creation of supercomputers
Cybersecurity is booming, and the industry is facing a massive
It is obvious that robots are playing an increasingly critical
Expansion will rapidly scale Deloitte’s Google Cloud capabilities, and involve
A virtual event gathering 2,000 data scientists, engineers and machine
New Delhi – October 13th, 2022: Tech Mahindra, a leading

Reach Us

 
Get AI newsletter delivered to your inbox, and more info about our products and services
Designed by Analytics Insight
© 2022 Analytics Insight. All Rights reserved.
Forgot Password? | Sign Up

Enter the username or e-mail you used in your profile. A password reset link will be sent to you by email.
Already have an account? Login
Before you can login, you must active your account with the code sent to your email address. If you did not receive this email, please check your junk/spam folder. Click here to resend the activation email. If you entered an incorrect email address, you will need to re-register with the correct email address.

source

Related Articles

LEAVE A REPLY

Please enter your comment!
Please enter your name here

Latest Articles