Technology peripheralsIt IndustryThe U.S. government recommends that developers stop using C/C++ and switch to memory-safe programming languagesThe U.S. government recommends that developers stop using C/C++ and switch to memory-safe programming languages
According to news from this site on February 29, the U.S. government recently released a cybersecurity report calling on developers to stop using programming languages that are prone to memory safety vulnerabilities, such as C and C, and instead use memory-safe programming languages. development. The report was released by the Office of the Cyberspace Director (ONCD) to implement US President Joe Biden’s cybersecurity strategy, with the goal of “protecting the bedrock of cyberspace.”
Memory safety means that a program can effectively avoid potential errors and vulnerabilities when accessing memory, such as buffer overflows and dangling pointers. Java is considered a memory-safe programming language because of its runtime error detection capabilities. In contrast, C and C allow direct access to memory addresses and lack bounds checking, which makes them more prone to memory safety issues. Therefore, when developing applications, choosing the right programming language and adopting corresponding memory management strategies are crucial to ensuring memory safety.
According to research data from Microsoft and Google cited in the report, more than 70% of security vulnerabilities are closely related to memory safety issues. In addition, the report also mentioned the open source software security roadmap released by the U.S. Cybersecurity and Infrastructure Security Agency (CISA), which encourages developers to adopt memory-safe programming languages and implement "security by design" development methods at the early stage of the project. This approach aims to reduce the risk of security vulnerabilities needing to be fixed later by focusing on security in the early stages of software design and development. Therefore, it is crucial to emphasize memory safety during software development, which can effectively reduce potential security vulnerabilities and risks.
The 19-page report aims to emphasize that cybersecurity is not just the responsibility of individuals, but also the shared responsibility of large organizations, technology companies and governments. The report does not recommend a specific programming language to replace C and C, but emphasizes that there are multiple memory-safe programming languages to choose from. The report also calls on businesses and engineers to adopt best software development practices and use memory-safe hardware to reduce the possibility of malicious attacks.
The U.S. National Security Agency (NSA) mentioned some programming languages that are considered safe in a recently released cybersecurity information document. It is worth noting...
Rust
Go
C
Java
Swift
JavaScript
- ##Ruby
The above is the detailed content of The U.S. government recommends that developers stop using C/C++ and switch to memory-safe programming languages. For more information, please follow other related articles on the PHP Chinese website!
CNCF Arm64 Pilot: Impact and InsightsApr 15, 2025 am 08:27 AMThis pilot program, a collaboration between the CNCF (Cloud Native Computing Foundation), Ampere Computing, Equinix Metal, and Actuated, streamlines arm64 CI/CD for CNCF GitHub projects. The initiative addresses security concerns and performance lim
Building a Network Vulnerability Scanner with GoApr 01, 2025 am 08:27 AMThis Go-based network vulnerability scanner efficiently identifies potential security weaknesses. It leverages Go's concurrency features for speed and includes service detection and vulnerability matching. Let's explore its capabilities and ethical
Top 10 Best Free Backlink Checker Tools in 2025Mar 21, 2025 am 08:28 AMWebsite construction is just the first step: the importance of SEO and backlinks Building a website is just the first step to converting it into a valuable marketing asset. You need to do SEO optimization to improve the visibility of your website in search engines and attract potential customers. Backlinks are the key to improving your website rankings, and it shows Google and other search engines the authority and credibility of your website. Not all backlinks are beneficial: Identify and avoid harmful links Not all backlinks are beneficial. Harmful links can harm your ranking. Excellent free backlink checking tool monitors the source of links to your website and reminds you of harmful links. In addition, you can also analyze your competitors’ link strategies and learn from them. Free backlink checking tool: Your SEO intelligence officer
Hot AI Tools
Undresser.AI Undress
AI-powered app for creating realistic nude photos
AI Clothes Remover
Online AI tool for removing clothes from photos.
Undress AI Tool
Undress images for free
Clothoff.io
AI clothes remover
AI Hentai Generator
Generate AI Hentai for free.
Hot Article
Hot Tools
Zend Studio 13.0.1
Powerful PHP integrated development environment
DVWA
Damn Vulnerable Web App (DVWA) is a PHP/MySQL web application that is very vulnerable. Its main goals are to be an aid for security professionals to test their skills and tools in a legal environment, to help web developers better understand the process of securing web applications, and to help teachers/students teach/learn in a classroom environment Web application security. The goal of DVWA is to practice some of the most common web vulnerabilities through a simple and straightforward interface, with varying degrees of difficulty. Please note that this software
EditPlus Chinese cracked version
Small size, syntax highlighting, does not support code prompt function
SublimeText3 Mac version
God-level code editing software (SublimeText3)
Safe Exam Browser
Safe Exam Browser is a secure browser environment for taking online exams securely. This software turns any computer into a secure workstation. It controls access to any utility and prevents students from using unauthorized resources.
