| ISO/IEC JTC 1/SC 22/OWG:Vulnerabilities |
Jim Moore, James.W.Moore@ieee.org |
|
This is a list of documents and other resources that were found during the research leading to the creation of the OWGV. Inclusion in this list does not imply endorsement by OWGV or any participant of OWGV.
There is a distinct list for items related to OOTIA.
|
|
Subsetting and Guidance | Tools & Analysis | Assembly Lang | Ada | C | C++ | Coral 66 | Fortran | Java | Modula 2 | Pascal | SPARK | Standards and Regulation | OO | RT | Lang Design | ||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Tom Erkkinen, "Developing High-Integrity Software in C and Ada" SAE Technical Paper Series 1999-01-0265, (web) | 1 | X | X | |||||||||||||||
| () | 2 | |||||||||||||||||
| Subsetting and Guidance | Tools & Analysis | Assembly Lang | Ada | C | C++ | Coral 66 | Fortran | Java | Modula 2 | Pascal | SPARK | Standards and Regulation | OO | RT | Lang Design | |||
| ISO/IEC TR 15942:2000, "Information technology -- Programming languages -- Guide for the use of the Ada programming language in high integrity systems" (web) | 3 | X | X | X | ||||||||||||||
| Motor Industry Software Reliability Association (MISRA[UK]), "Guidelines for the Use of the C Language in Vehicle Based Software", ISBN 0 9524156 9 0, April 1998 (web). (See new version below, 4.1.) | 4 | X | X | |||||||||||||||
| Motor Industry Software Reliablity Association (MISRA), "MISRA-C:2004, Guidelines for the Use of the C Language in Critical Systems", ISBN 0 9524156 2 3 (or 4 X for pdf), (web) | 4.1 | X | X | |||||||||||||||
| W. J. Cullyer, S. J. Goodenough, B. A. Wichmann, "The choice of languages for use in safety-critical systems," Software Engineering Journal, March 1991 9 (See new version below, 5.1.) | 5 | X | X | X | X | X | X | |||||||||||
| B A Wichmann, "Languages for Critical Systems," National Physical Laboratory, UK, January 4, 1999 (pdf) | 5.1 | X | X | X | X | X | X | |||||||||||
| Franco Mazzanti, "Coding Regulations for Safety Critical Software Development," Second IEEE International Software Standards Symposium, August 1995. | 6 | X | ||||||||||||||||
| Erik Yu-Shing Hu, Guillem Bernat, Andy Wellings, "Addressing Dynamic Dispatching Issues in WCET Analysis of Object-Oriented Hard Real-Time Systems," Proceedings of 5th IEEE International Symposium on Object-Oriented Real-Time Distributed Computing, 2002 | 7 | X | X | |||||||||||||||
| Subsetting and Guidance | Tools & Analysis | Assembly Lang | Ada | C | C++ | Coral 66 | Fortran | Java | Modula 2 | Pascal | SPARK | Standards and Regulation | OO | RT | Lang Design | |||
| Jagun Kwon, Andy Wellings, Steve King, "Predictable Memory Utilization in the Ravenscar-Java Profile," ?. | 8 | X | X | |||||||||||||||
| Barbara J. Czerny et al, "Identifying and Understanding Relevant System Safety Standards for use in the Automotive Industry," SAE? | 9 | X | ||||||||||||||||
| Janet Barnes, Brian Dobbing, Rod Chapman, "On the Principled Design of Object Oriented Programming Languages for High Integrity Systems," ? | 10 | X | X | |||||||||||||||
| P. V. Bhansali, "A Systematic Approach to Identifying a Safe Subset for Safety-Critical Software," ACM SIGSOFT Software Engineering Notes, Volume 28, Issue 4 (July 2003). | 11 | X | X | X | X | |||||||||||||
| David A. Wheeler, "Ada, C, C++, and Java vs. the Steelman," 1996 (web) | 12 | X | X | X | X | X | ||||||||||||
| Subsetting and Guidance | Tools & Analysis | Assembly Lang | Ada | C | C++ | Coral 66 | Fortran | Java | Modula 2 | Pascal | SPARK | Standards and Regulation | OO | RT | Lang Design | |||
| Mike Falla (ed), "Tools and Languages for Critical Systems," Chapter 10 of Advances in Safety Critical Systems - Results and Achievements from the DTI/EPSRC R&D Programme | 13 | X | X | |||||||||||||||
| C. Jones et al (Adelard), "Methods for assessing the safety integrity of safety-related software of uncertain pedigree (SOUP)," Health and Safety Executive (UK), 2001, ISBN 0 7126 2011 5 | 14 | X | ||||||||||||||||
| "Draft Java Specification Request: Safety Critical Java Technology" ca 2003?, (doc) | 15 | X | X | |||||||||||||||
| Greg Bollella et al, "Programming with Non-Heap Memory in the Real Time Specification for Java," OOPSLA'03, October 2003. | 16 | X | X | |||||||||||||||
| Bill Beckwith, "Style Guides for the Safe and Secure Subsets of Languages," 2004-08 (ppt). | 17 | X | ||||||||||||||||
| Jagun Kwon, Andy Wellings, Steve King, "Assessment of the Java Programming Language for Use in High Integrity Systems", U of York YCS-2002-341. | 18 | X | ||||||||||||||||
| Jagun Kwon, Andy Wellings, Steve King, "Ravenscar-Java: A High Integrity Profile for Real-Time Java," Joint ACM Java Grande - ISCOPE 2002 Conference, November 2002, Seattle. | 19 | X | X | |||||||||||||||
| Dolores R. Wallace, Laura M. Ippolito, D. Richard Kuhn, "High Integrity Software Standards and Guidelines," NIST SP 500-204, 1992, (pdf) | 20 | X | ||||||||||||||||
| () | 21 | |||||||||||||||||
| () | 22 | |||||||||||||||||
| Subsetting and Guidance | Tools & Analysis | Assembly Lang | Ada | C | C++ | Coral 66 | Fortran | Java | Modula 2 | Pascal | SPARK | Standards and Regulation | OO | RT | Lang Design | |||
| "EC--, a measurement based safer subset of ISO C suitable for embedded system development", (2005) Accepted by Information and Science Technology (pdf, web). [Included by permission.] | 23 | X | X | |||||||||||||||
| Les Hatton, "Safer Subsets" (web) | 24 | X | ||||||||||||||||
| John Barnes, "High Integrity Software: The SPARK Approach to Safety and Security", Addison-Wesley, 2003. (web) | 25 | X | ||||||||||||||||
| John Barnes, "High Integrity Ada: The SPARK Approach," Addison-Wesley, 1997 and 2002. | 26 | X | X | |||||||||||||||
| SunSoft, "SPARCompiler Ada Programmer's Guide," Revision A, 1995 | 27 | X | ||||||||||||||||
| "Embedded C++ Home Page," (web) | 28 | X | X | |||||||||||||||
| Peter Amey, re Java versus Ada for safety critical command and control application, email list (web) | 29 | X | X | |||||||||||||||
| Jagun Kwon, re High integrity subset of Java, email list (web) | 30 | X | X | |||||||||||||||
| Les Hatton, "Safer Language Subsets: an overview and a case history, MISRA C," Information and Science Technology, 46 (2004), p. 465-472 (pdf, web). [Included by permission.] | 31 | X | X | |||||||||||||||
| Subsetting and Guidance | Tools & Analysis | Assembly Lang | Ada | C | C++ | Coral 66 | Fortran | Java | Modula 2 | Pascal | SPARK | Standards and Regulation | OO | RT | Lang Design | |||
| NUREG/CR-6463, Rev. 1, Review Guidelines for Software Languages for Use in Nuclear Power Plant Safety Systems: Final Report, 1997, US Nuclear Regulatory Commission (html) | 32 | X | X | X | X | X, others? | ||||||||||||
| Ben Brosgol, "Languages for Safety-Critical Systems", SSTC Conference, April 2004. | 33 | X | X | X | ||||||||||||||
| Brian Wichmann et al, Software Support for Metrology, Best Practice Guide No. 1: Validation of Software in Measurement Systems, Version 2.1, March 2004, Centre for Mathematics and Scientific Computing, National Physical Laboratory, UK (web) | 34 | X | X | |||||||||||||||
|
IEC 61508-3 (FDIS draft) Functional safety of electrical/electronic/ programmable electronic safety-related systems--Part 3: Software requirements -- Excerpts (pdf) |
35 | X | X | |||||||||||||||
|
IEC 61508-7 Functional safety of electrical/electronic/ programmable electronic safety-related systems--Part 7: Overview of techniques and measures -- Excerpt (pdf) |
36 | X | X | X | X | X | X | X | X | |||||||||
|
IEC 61508 Functional safety of electrical/electronic/ programmable electronic safety-related systems -- Collection (zip) |
37 | X | ||||||||||||||||
| M. B. Hill and E. V. Whiting, "An Investigation of the Unpredictable Features of the C++ Language", QINETIQ/KI/TIM/TR043014, May 2004, QinetiQ Ltd, Farnborough, Hampshire, UK, prepared for P. Caseley, UK MOD. (pdf)(permission) | 38 | X | ||||||||||||||||
| Subsetting and Guidance | Tools & Analysis | Assembly Lang | Ada | C | C++ | Coral 66 | Fortran | Java | Modula 2 | Pascal | SPARK | Standards and Regulation | OO | RT | Lang Design | |||
| Derek Jones, "The New C Standard: An Economic and Cultural Commentary", draft, 11 Jan 2005 (pdf, web, permission). [C coding guidelines begin on page 32.] For more recent versions, check the companion web site (web). | 39 | X | ||||||||||||||||
| The website of the 61508 Association provides information on "CASS", a scheme for assessing the conformity of safety-related systems with the requirements of ISO/IEC 61508 and associated standards. The copyrighted documents can be found here. There is also a website for The CASS Scheme Ltd. | 40 | X | ||||||||||||||||
| Derek W. Reinhardt, "Use of the C++ Programming Language in Safety Critical Systems," MSc SCSE Thesis, University of York (pdf) | 41 | X | ||||||||||||||||
| Web site for Splint, Secure Programming Lint, sponsored by the National Science Foundation (http://www.splint.org) | 42 | X | ||||||||||||||||
| Web site for SPARK, Praxis High Integrity Systems (web) | 43 | X | ||||||||||||||||
| Web site for SRI Computer Science Laboratory (web) | 44 | |||||||||||||||||
| Web site for US Naval Research Laboratory, Center for High Assurance Computer Systems (web) | 45 | |||||||||||||||||
| Subsetting and Guidance | Tools & Analysis | Assembly Lang | Ada | C | C++ | Coral 66 | Fortran | Java | Modula 2 | Pascal | SPARK | Standards and Regulation | OO | RT | Lang Design | |||
| Gary Vecellio, (The MITRE Corporation), Issues Using Java for High Confidence Software, working paper V1.0 (pdf) | 46 | X | ||||||||||||||||
| Kelvin Nilsen (Aonix Corp.), In Pursuit of Safety-Critical Java, COTS Journal, February 2005 (web, pdf) | 47 | X | ||||||||||||||||
| Andy German (QinetiQ Ltd), Software Static Code Analysis: Lessons Learned, Crosstalk, November 2003 (pdf) | 48 | X | X | X | X | X | X | |||||||||||
|
ISO/IEC JTC1 SC22 N3838, ISO/IEC WDTR 24731, Information Technology
— Programming languages, their environments and system software interfaces — Specification for Secure C Library Functions, 2004-12-09 (pdf) |
49 | X | ||||||||||||||||
| Susan S. Brilliant, John C. Knight, Nancy G. Leveson, "Analysis of Faults in an N-Version Software Experiment", IEEE Transactions on Software Engineering, Volume 16 , Issue 2 (February 1990) (web) | 50 | |||||||||||||||||
| Todd M. Austin, "Efficient Detection of All Pointer and Array Access Errors" (web) | 51 | X | X | X | ||||||||||||||
| Subsetting and Guidance | Tools & Analysis | Assembly Lang | Ada | C | C++ | Coral 66 | Fortran | Java | Modula 2 | Pascal | SPARK | Standards and Regulation | OO | RT | Lang Design | |||
| Arnaud Venet, "Precise and Efficient Static Array Bound Checking for Large Embedded C Programs" (web) | 52 | X | ||||||||||||||||
| Nevin Heintze, Olivier Tardieu, "Ultra-fast Aliasing Analysis using CLA: A Million Lines of C Code in a Second", 2001, SIGPLAN Conference on Programming Language Design and Implementation (web) | 53 | X | ||||||||||||||||
| Derek M. Jones, "Reusing C code in Java" (web) | 54 | X | X | |||||||||||||||
| IEEE Computer Society, Guide to the Software Engineering Body of Knowledge, 2004 (web) | 55 | |||||||||||||||||
| William R. Bush, Jonathan D. Pincus and David J. Sielaff, "A static analyzer for finding dynamic programming errors" | 56 | X | ||||||||||||||||
| The Daily WTF: Curious Perversions in Information Technology (web) | 57 | |||||||||||||||||
| Subsetting and Guidance | Tools & Analysis | Assembly Lang | Ada | C | C++ | Coral 66 | Fortran | Java | Modula 2 | Pascal | SPARK | Standards and Regulation | OO | RT | Lang Design | |||
| Ingo Feinerer, "Formal Program Verification: A Comparison of Selected Tools and Their Theoretical Foundations" (web) | 58 | X | ||||||||||||||||
| "How to Write Unmaintainable Code", Canadian Mind Products (web) | 59 | |||||||||||||||||
| Yaofei Chen; Dios, R.; Mili, A.; Lan Wu; Kefei Wang; "An Empirical Study of Programming Language Trends", IEEE Software, Volume 22, Issue 3, May-June 2005 Page(s):72 - 78 (pdf). For background information (web). | 60 | X | X | X | X | X | X | X | ||||||||||
| UK MOD, Interim DefStan 00-56, Safety Management Requirements for Defence Systems, Part 1, Requirements, Issue 3, 17 December 2004 (pdf). | 61 | X | ||||||||||||||||
| UK MOD, DefStan 00-42, Reliability and Maintainability (R&M) Assurance Guidance, Part 3: R&M Case, Issue 2, 6 June 2003 (pdf). | 62 | X | ||||||||||||||||
| UK MOD, DefStan 00-42, Reliability and Maintainability Assurance Guide, Part 2: Software, Issue 1, 1 September 1997 (pdf). | 63 | X | ||||||||||||||||
| Subsetting and Guidance | Tools & Analysis | Assembly Lang | Ada | C | C++ | Coral 66 | Fortran | Java | Modula 2 | Pascal | SPARK | Standards and Regulation | OO | RT | Lang Design | |||
| European HIJA (High Integrity Java) project (web). | 64 | X | ||||||||||||||||
| Open Group, press release, 14 July 2005, "Europe Investing over 4M euros in research and development in Real-time Java technologies supporting High-Integrity applications" (web) | 65 | X | ||||||||||||||||
| W. Kahan and Joseph Darcy, "How Java's Floating-Point Hurts Everyone Everywhere," (originally presented at the ACM 1998 Workshop on Java for High-Performance Network Computing) (pdf) (web) | 66 | X | ||||||||||||||||
| Joshua Bloch and Neal Gafter, "Java Puzzlers: Traps, Pitfalls, and Corner Cases," Addison-Wesley, 2005 (web) | 67 | X | ||||||||||||||||
| Binghampton University, The Underhanded C Contest (web) | 68 | X | ||||||||||||||||
| Derek Jones, "Coding Guidelines-Fact or Fiction," informit.com, 9 Dec 2005 (pdf) (web) | 69 | X | ||||||||||||||||
| Philip E. Ross, "The Exterminators", IEEE , Sep 2005 (pdf, web) | 70 | X | ||||||||||||||||
| Derek Jones, "Culture and formal education issues; Discussion and proposed guidelines," 2006 (web) | 71 | X | ||||||||||||||||
| Subsetting and Guidance | Tools & Analysis | Assembly Lang | Ada | C | C++ | C# | Coral 66 | Fortran | Java | Modula 2 | Pascal | SPARK | Standards and Regulation | OO | RT | Lang Design | ||
|
Lockheed Martin, "Joint Strike Fighter Air Vehicle C++ Coding
Standards for the System Development and Demonstration Program,"
Document Number 2RDU00001 Rev C, December 2005 ( |