No developer can afford to ignore security. But all too often security seems tacked on like an afterthought, which can lead to problems when the code is released.
InfoWorld put together a list of 17 tips for securing your code. Here are the first ten:
- Test inputs rigorously
- Store what you need, and not one bit more
- Avoid trusting passwords more than necessary
- Negotiate requirements
- Add delays to your code
- Use encryption more often than you think you should
- Build walls
- Tested libraries—use them
- Use internal APIs
- Bring in outside auditors to critique your code