Contains Nonbinding Recommendations Guidance for Industry andFood and Drug Administration Staff This guidance represents the current thinking of the Food and Drug Administration (FDA or Agency) on this topic. It does not establish any rights for any person and is not binding on FDA or the public. You can use an alternative approach if it… Continue reading Postmarket Management of Cybersecurity in Medical Devices
Author: cert
Toward a “Periodic Table” of Bugs
How Can I Really Tell What’s Wrong With My Code? Common Nomenclature Common Weakness Enumeration (CWE)A “dictionary” of every class of bug or flaw in softwareMore than 600 distinct classes, e.g., buffer overflow, directory traversal, OS injection, race condition, cross-site scripting, hardcoded password, and insecure random Common Vulnerability Enumeration (CVE) A list of instances of… Continue reading Toward a “Periodic Table” of Bugs