Earlier this year I wrote an introduction to some of the safety features available to hobbyist developers using Visual C++ 2005 Express Edition. You can read it here:
Using Visual C++ Express to Build Secure Applications
The majority of the features I discussed stem directly from improvements made to the libraries that ship with the compiler, including the C Run-Time Library and the Standard C++ Library.
Martyn Lovell, who is the development lead for the Visual C++ Libraries and owns the implementation of these new safety features, has written a great article providing more insight into the motivations as well as the approaches taken to introduce these features in Visual C++ 2005. He also provides some very helpful guidance on migrating existing code over to the safer functions and checked iterators. You can read it here:
Repel Attacks on Your Code with the Visual Studio 2005 Safe C and C++ Libraries
Martyn is also a reviewer on my book project. Now if only I can get him to find more time to spend on my manuscript…
© 2005 Kenny Kerr