RECENT STORIES:

Addressing digital sovereignty in a data-driven world
Maybank accelerates digital transformation with AI-driven innovation
Confidence Holds, but Change is Inevitable: ANZ Construction Leaders R...
Elegoo Launches Nexprint Million-Dollar Creator Fund to Reward Origina...
ISX Financial EU PLC: Managing Director to appeal Australian civil jud...
ViewSonic Honored as One of HR Asia’s “Best Companies to W...
LOGIN REGISTER
DigiconAsia
  • Features
    • Featured

      What’s next for data and AI?

      What’s next for data and AI?

      Wednesday, August 6, 2025, 5:27 PM Asia/Singapore | Features
    • Featured

      Reimagining customer experience with AI

      Reimagining customer experience with AI

      Friday, August 1, 2025, 2:20 PM Asia/Singapore | Features
    • Featured

      Digital innovation for food safety and sustainability in S E Asia

      Digital innovation for food safety and sustainability in S E Asia

      Wednesday, July 23, 2025, 1:29 PM Asia/Singapore | Features
  • News
    • Featured

      AI coding assistant goes rogue, deletes live database during code freeze

      AI coding assistant goes rogue, deletes live database during code freeze

      Friday, August 8, 2025, 3:02 PM Asia/Singapore | News, Newsletter
    • Featured

      The AI gold rush fuels inequality and risks democracy, new report warns

      The AI gold rush fuels inequality and risks democracy, new report warns

      Wednesday, August 6, 2025, 1:38 PM Asia/Singapore | News, Newsletter
    • Featured

      Eco start-up launches carbon-absorbing bricks  to boost construction sustainability

      Eco start-up launches carbon-absorbing bricks  to boost construction sustainability

      Tuesday, August 5, 2025, 11:59 AM Asia/Singapore | News, Newsletter
  • Perspectives
  • Tips & Strategies
  • Whitepapers
  • Awards 2023
  • Directory
  • E-Learning

Select Page

News

US security agencies urge migration to memory safe programming

By DigiconAsia and CybersecAsia editors | Monday, June 30, 2025, 1:37 PM Asia/Singapore

US security agencies urge migration to memory safe programming

CISA and NSA release guidance for adopting memory-safe programming languages to nip decades-long system vulnerabilities in the bud.

For decades, memory-related vulnerabilities have been a persistent and costly challenge for cybersecurity professionals, frequently enabling devastating cyberattacks and compromising critical systems.

These vulnerabilities, which arise from programming errors in how software accesses or manages memory — such as buffer overflows; use-after-free; and dangling pointers — are especially common in languages such as C and C++, that lack built-in memory safety mechanisms. Industry studies consistently show that around 70% of severe security bugs are linked to memory safety issues, making them the most prevalent type of disclosed software vulnerability.

High-profile incidents such as Heartbleed and BadAlloc have illustrated the far-reaching consequences of these flaws, affecting everything from hospital records to industrial control systems. However, with last week’s announcement by the US Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) of a renewed push for systemic change, things are set to change for the better.

In a joint guidance document, the two agencies are urging software development teams and organizations to adopt memory-safe programming languages (called MSLs) such as Rust, Go, Java, Swift, Python, and C#, which incorporate automated memory management and compile-time checks to eliminate entire classes of vulnerabilities. The agencies stress that embedding memory safety at the programming language level shifts the responsibility from individual programmers to the tools themselves, offering a more robust and scalable defense against exploitation.

While acknowledging that transitioning legacy systems and large codebases to memory-safe languages presents challenges (including the need for developer training, tooling, and careful integration with existing software) the agencies emphasize that the long-term benefits for national security and software resilience are substantial. Their guidance provides practical strategies for adoption and highlights ways to harden existing non-memory-safe applications when a full transition is not feasible.

Nevertheless, recognizing that MSLs may not be the best option for every scenario, the US government’s message that efforts should take advantage of tools such as TRACTOR that can translate unsafe code through a Foreign Function Interface into MSL-compatible runtime code.

Share:

PreviousSM: Enabling Resilient and Sustainable Development
NextHow Nissin Foods turned tangled, siloed data into smooth-as-noodles actionable assets

Related Posts

Two South Korean firms launch accelerator program for SEA tech startups

Two South Korean firms launch accelerator program for SEA tech startups

October 14, 2020

Payment Almanac for e-commerce and local payments updated

Payment Almanac for e-commerce and local payments updated

May 28, 2020

How to do impactful marketing in times of crisis

How to do impactful marketing in times of crisis

April 27, 2020

High performance computing group launches free platform to speed COVID-19 drug research

High performance computing group launches free platform to speed COVID-19 drug research

July 28, 2020

Leave a reply Cancel reply

You must be logged in to post a comment.

Awards Nomination Banner

gamification list

PARTICIPATE NOW

top placement

Whitepapers

  • Achieve Modernization Without the Complexity

    Achieve Modernization Without the Complexity

    Transforming IT infrastructure is crucial …Download Whitepaper
  • 5 Steps to Boost IT Infrastructure Reliability

    5 Steps to Boost IT Infrastructure Reliability

    In today's fast-evolving tech landscape, …Download Whitepaper
  • Simplify Payroll Setup for Your Small Business

    Simplify Payroll Setup for Your Small Business

    In our free guide, "How …Download Whitepaper
  • Overcoming the Challenges of Cost & Complexity in the Cloud-first Era.

    Overcoming the Challenges of Cost & Complexity in the Cloud-first Era.

    Download Whitepaper

Middle Placement

Case Studies

  • Maybank accelerates digital transformation with AI-driven innovation

    Maybank accelerates digital transformation with AI-driven innovation

    Maybank has entered into a strategic …Read More
  • India robotics firm transforms automation with virtual twins and low-code platform adoption

    India robotics firm transforms automation with virtual twins and low-code platform adoption

    Adopting a unified digital platform …Read More
  • CreditAccess Grameen enhances operational efficiency and accelerates time-to-market

    CreditAccess Grameen enhances operational efficiency and accelerates time-to-market

    Leveraging Mendix's low-code capabilities, the …Read More
  • Advancing healthcare with mission-critical wireless: Korea University Medicine beamforms the right connections

    Advancing healthcare with mission-critical wireless: Korea University Medicine beamforms the right connections

    The university hospital is redefining …Read More

Bottom Sidebar

Other News

  • Confidence Holds, but Change is Inevitable: ANZ Construction Leaders Rethink Operation to stay Competitive

    August 11, 2025
    The fourth annual Kennards Hire …Read More »
  • Elegoo Launches Nexprint Million-Dollar Creator Fund to Reward Original Content

    August 10, 2025
    This is the first seven-digit …Read More »
  • ISX Financial EU PLC: Managing Director to appeal Australian civil judgement and orders

    August 9, 2025
    NICOSIA, Cyprus, Aug. 9, 2025 …Read More »
  • ViewSonic Honored as One of HR Asia’s “Best Companies to Work for in Asia” for the Third Consecutive Year

    August 8, 2025
    TAIPEI, Aug. 8, 2025 /PRNewswire/ …Read More »
  • State Grid Xinjiang Information & Telecommunication Company’s penetration supervision of material and financial risks achieves remarkable results

    August 8, 2025
    URUMQI, China, Aug. 8, 2025 …Read More »
  • Our Brands
  • CybersecAsia
  • MartechAsia
  • Home
  • About Us
  • Contact Us
  • Sitemap
  • Privacy & Cookies
  • Terms of Use
  • Advertising & Reprint Policy
  • Media Kit
  • Subscribe
  • Manage Subscriptions
  • Newsletter

Copyright © 2025 DigiconAsia All Rights Reserved.