- Software Standards Specification
- Software Requirements Definition
- Software Best Practices
- Input Validation
- Output Validation
- Cookie Requirements
- Access Failure Error Checking
- Buffer Overflow
- Code Structure
- Software Functions
- Software Modules
- Requirements for Variables
- Software Code Comment Requirements
- Quality Code Requirements
- Software Code Review
- Software Code Testing Requirements
- Software Change Control
Security Best Practices
- Secure Functional Requirements
- Account Creation
- Change Password
- Forgot Password
- Personal Question
- Contact Webmaster
- CAPTCHA Tests
- Answer Verification
Quality Code Requirements
General Quality Programming Requirements
This page provides several quality code requirements.
Minimum documentation of code according to the code documentation standard.
The use of global data must be limited and when used, it must be documented in the function what global data is used. Where the global data is instantiated, it must be documented what functions may modify the data.
Only one program statement should be put on each line.
Routines/program code containing functionality which is commonly used such as password reset, login screens, validating and parsing of user input, and display screens should be created and placed in a library where it can be shared with other programmers in the organization. This code should be optimized and designed to be secure. All shared code should be reviewed for flaws before it is shared.
Programmers are required to use the library of shared code wherever possible to support their project. This will decrease development cost and increase security since the shared code was previously reviewed for flaws.