Zeppelin: a Secure Smart Contracts Open-Source Framework for Blockchain Applications

by Jeevak Kasarkod on  Oct 03, 2016

Zeppelin is a MIT licensed open source secure smart contract development framework to build blockchain applications. It's a community effort pioneered to ensure only secure, tested and audited smart contract code makes it to a production blockchain, to reduce incidents such as "The DAO" hack. Zeppelin is intended to be blockchain-agnostic, but in the beginning they are focusing on Solidity tools.

DidFail: a Free Android Tool to Detect Information Leakage

by Sergio De Simone on  Jul 08, 2014

CERT Secure Coding team have recently released a freely available tool capable of analysing the leakage of sensitive information from an Android app. CERT researchers claim their tool "is the most precise taint-flow static analysis tool for Android apps."

Heartbleed’s Aftermath: OpenBSD Developers Start Purifying OpenSSL

by Jeff Martin on  Apr 21, 2014

OpenSSL's Heartbleed vulnerability has brought the project under the intense scrutiny of the OpenBSD development team. The team began a massive cleanse and repair of the OpenSSL codebase last week with impressive results.

Secure Coding for the Android Platform

by Sergio De Simone on  Apr 11, 2014

CERT Secure Coding team, part of the Software Engineering Institute at Carnegie Mellon University, have recently released secure coding guidelines specific to Java's application in the Android platform. InfoQ interviews Lori Flynn, one of the researchers who authored them.

Lessons Learned from Apple's GoToFail Bug

by Sergio De Simone on  Feb 28, 2014 5

The recent security weakness found in both iOS and OS X hints at flaws in coding style guidelines, unit testing, system testing, code review policies, error management strategies, and tools deployment. An overview.

General Feedback
Marketing and all content copyright © 2006-2016 C4Media Inc. hosted at Contegix, the best ISP we've ever worked with.
Privacy policy

We notice you're using an ad blocker

We understand why you use ad blockers. However to keep InfoQ free we need your support. InfoQ will not provide your data to third parties without individual opt-in consent. We only work with advertisers relevant to our readers. Please consider whitelisting us.