Document Revision History

This table describes the changes to Secure Coding Guide.

DateNotes
2016-09-13

Updated guidance on avoiding overflow, and explained the security implications of a few compiler flags.

2016-03-01

Updated for Xcode 7.3 with -fsanitize and address sanitizer information.

2014-02-11

Added information about non-executable stacks and heaps, address space layout randomization, injection attacks, and cross-site scripting.

2012-06-11

Made minor typographical fixes.

2012-02-16

Fixed minor errors throughout.

2012-01-09

Updated for OS X v10.7.

2010-02-12

Added security guidelines.

2008-05-23

Added article on validating input--including the dangers of loading insecurely stored archives--and added information about the iOS where relevant.

2006-05-23

New document that describes techniques to use and factors to consider to make your code more secure from attack.