Skip to content
Software Security Anti-Patterns
Branch: master
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
README.md
blacklisting.md
confirmationbias.md
copypasteinsecurecode.md
incompletemediation.md
insufficientwwwknowledge.md
looseningblacklists.md
mixingcodeanddata.md
pardonthemalintent.md
securelibraryignorance.md
wideningwhitelistswithoutprecautions.md

README.md

Software Security Anti-Patterns

An anti-pattern is a common response to a recurring problem that is usually ineffective and risks being highly counterproductive [1]. In short anti-patterns are commonly reinvented but bad solutions to problems.

There are numerous anti-patterns in software security;

  • Pardon the malintent
  • [Copy-Paste insecure code] (copypasteinsecurecode.md)
  • [Incomplete mediation] (incompletemediation.md)
  • [Blacklisting] (blacklisting.md)
  • [Loosening blacklists] (looseningblacklists.md)
  • [Widening whitelists without precautions] (wideningwhitelistswithoutprecautions.md)
  • [Insufficient WWW knowledge] (insufficientwwwknowledge.md)
  • [Secure library ignorance] (securelibraryignorance.md)
  • [Mixing code and data] (mixingcodeanddata.md)
  • [Confirmation bias] (confirmationbias.md)

References

[1] https://en.wikipedia.org/wiki/Anti-pattern

Contact

Bedirhan Urgun / bedirhan{dot}urgun at gmail

You can’t perform that action at this time.