1. Software Standards Specification
  2. Software Requirements Definition
  3. Software Best Practices
  4. Input Validation
  5. Output Validation
  6. Cookie Requirements
  7. Access Failure Error Checking
  8. Buffer Overflow
  9. Code Structure
  10. Software Functions
  11. Software Modules
  12. Requirements for Variables
  13. Software Code Comment Requirements
  14. Quality Code Requirements
  15. Software Code Review
  16. Software Code Testing Requirements
  17. Software Change Control

    Security Best Practices

  18. Secure Functional Requirements
  19. Account Creation
  20. Change Password
  21. Forgot Password
  22. Personal Question
  23. Contact Webmaster
  24. CAPTCHA Tests
  25. Answer Verification

Object Access Failure Checking

The software should always handle access failures or errors in a predictable way. It should be written to perform properly when access to any files, database, registry, or memory fails. The software should be able to determine whether the proper files, such as configuration files, are loaded.

Error Checking

Error checking is required when:

  • File access fails
  • Registry access fails
  • Database access fails
  • One or more configuration files are not available
  • A library file is not available
  • Configuration files and library files should be checked when loaded by the program to be sure they are legitimate and were not modified by a third party.
  • The program should ensure that modification of environment variables or file names will not cause substitute files to be loaded in error by the program.