RECENT STORIES:

Addressing digital sovereignty in a data-driven world
New Charities Aid Foundation study finds people in wealthy countries d...
China Resources Group Participates in 3rd CISCE to Develop World-Class...
Sungrow Unveils Next-Generation Residential ESS
TECO Wins Major Hyperscale Data Center MEP Projects in Malaysia
UnionPay Launches Global Summer Campaign with Exclusive Travel Offers
LOGIN REGISTER
DigiconAsia
  • Features
    • Featured

      Asia the true testbed for AI agents

      Asia the true testbed for AI agents

      Wednesday, July 16, 2025, 2:42 PM Asia/Singapore | Customer Experience, Features
    • Featured

      Appreciating AI means honoring accountability and integrity, beyond commercial hype

      Appreciating AI means honoring accountability and integrity, beyond commercial hype

      Tuesday, July 15, 2025, 2:23 PM Asia/Singapore | Features, Newsletter
    • Featured

      AI and the Great Work Reallocation in Asia Pacific

      AI and the Great Work Reallocation in Asia Pacific

      Thursday, July 10, 2025, 9:10 AM Asia/Singapore | Features, Future of Work
  • News
    • Featured

      Chatbot’s NAZI controversy prompts overhaul and new hallucinations features

      Chatbot’s NAZI controversy prompts overhaul and new hallucinations features

      Tuesday, July 15, 2025, 3:42 PM Asia/Singapore | News, Newsletter
    • Featured

      AI chatbot taken offline after generating controversial trope, sparking international backlash

      AI chatbot taken offline after generating controversial trope, sparking international backlash

      Friday, July 11, 2025, 4:35 PM Asia/Singapore | News, Newsletter
    • Featured

      Can inefficient meetings affect workplace productivity in the region?

      Can inefficient meetings affect workplace productivity in the region?

      Tuesday, July 8, 2025, 3:59 PM Asia/Singapore | News, Newsletter
  • Perspectives
  • Tips & Strategies
  • Whitepapers
  • Awards 2023
  • Directory
  • E-Learning

Select Page

News

US security agencies urge migration to memory safe programming

By DigiconAsia and CybersecAsia editors | Monday, June 30, 2025, 1:37 PM Asia/Singapore

US security agencies urge migration to memory safe programming

CISA and NSA release guidance for adopting memory-safe programming languages to nip decades-long system vulnerabilities in the bud.

For decades, memory-related vulnerabilities have been a persistent and costly challenge for cybersecurity professionals, frequently enabling devastating cyberattacks and compromising critical systems.

These vulnerabilities, which arise from programming errors in how software accesses or manages memory — such as buffer overflows; use-after-free; and dangling pointers — are especially common in languages such as C and C++, that lack built-in memory safety mechanisms. Industry studies consistently show that around 70% of severe security bugs are linked to memory safety issues, making them the most prevalent type of disclosed software vulnerability.

High-profile incidents such as Heartbleed and BadAlloc have illustrated the far-reaching consequences of these flaws, affecting everything from hospital records to industrial control systems. However, with last week’s announcement by the US Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) of a renewed push for systemic change, things are set to change for the better.

In a joint guidance document, the two agencies are urging software development teams and organizations to adopt memory-safe programming languages (called MSLs) such as Rust, Go, Java, Swift, Python, and C#, which incorporate automated memory management and compile-time checks to eliminate entire classes of vulnerabilities. The agencies stress that embedding memory safety at the programming language level shifts the responsibility from individual programmers to the tools themselves, offering a more robust and scalable defense against exploitation.

While acknowledging that transitioning legacy systems and large codebases to memory-safe languages presents challenges (including the need for developer training, tooling, and careful integration with existing software) the agencies emphasize that the long-term benefits for national security and software resilience are substantial. Their guidance provides practical strategies for adoption and highlights ways to harden existing non-memory-safe applications when a full transition is not feasible.

Nevertheless, recognizing that MSLs may not be the best option for every scenario, the US government’s message that efforts should take advantage of tools such as TRACTOR that can translate unsafe code through a Foreign Function Interface into MSL-compatible runtime code.

Share:

PreviousSM: Enabling Resilient and Sustainable Development
NextHow Nissin Foods turned tangled, siloed data into smooth-as-noodles actionable assets

Related Posts

True or false? AI is a business cure-all that fixes all bad business processes

True or false? AI is a business cure-all that fixes all bad business processes

November 10, 2023

Lusail City to boot up a “smart city operating system” by 2027

Lusail City to boot up a “smart city operating system” by 2027

October 16, 2024

APAC infrastructure projects go digital

APAC infrastructure projects go digital

October 16, 2023

Mazda Powers Legacy Migration with OutSystems

Mazda Powers Legacy Migration with OutSystems

May 2, 2025

Leave a reply Cancel reply

You must be logged in to post a comment.

Awards Nomination Banner

gamification list

PARTICIPATE NOW

top placement

Whitepapers

  • Achieve Modernization Without the Complexity

    Achieve Modernization Without the Complexity

    Transforming IT infrastructure is crucial …Download Whitepaper
  • 5 Steps to Boost IT Infrastructure Reliability

    5 Steps to Boost IT Infrastructure Reliability

    In today's fast-evolving tech landscape, …Download Whitepaper
  • Simplify Payroll Setup for Your Small Business

    Simplify Payroll Setup for Your Small Business

    In our free guide, "How …Download Whitepaper
  • Overcoming the Challenges of Cost & Complexity in the Cloud-first Era.

    Overcoming the Challenges of Cost & Complexity in the Cloud-first Era.

    Download Whitepaper

Middle Placement

Case Studies

  • Roojai Insurance (Thailand) doubles agent productivity through digital transformation

    Roojai Insurance (Thailand) doubles agent productivity through digital transformation

    Roojai Insurance (Thailand) doubles agent …Read More
  • Malayan Insurance achieves IFRS 17 readiness with SAS

    Malayan Insurance achieves IFRS 17 readiness with SAS

    A leading Philippines non-life insurer …Read More
  • How Iress is moving to EveryOps

    How Iress is moving to EveryOps

    Scaling compliance, security & efficiency …Read More
  • How Nissin Foods turned tangled, siloed data into smooth-as-noodles actionable assets

    How Nissin Foods turned tangled, siloed data into smooth-as-noodles actionable assets

    The trick is to unify …Read More

Bottom Sidebar

Other News

  • New Charities Aid Foundation study finds people in wealthy countries donate significantly less than low-income countries

    July 21, 2025
    LONDON, July 21, 2025 /PRNewswire/ …Read More »
  • China Resources Group Participates in 3rd CISCE to Develop World-Class Supply Chain for Listed Companies

    July 19, 2025
    BEIJING, July 19, 2025 /PRNewswire/ …Read More »
  • Sungrow Unveils Next-Generation Residential ESS

    July 18, 2025
    Designed for Reliable Backup Power …Read More »
  • TECO Wins Major Hyperscale Data Center MEP Projects in Malaysia

    July 18, 2025
    TAIPEI, July 18, 2025 /PRNewswire/ …Read More »
  • UnionPay Launches Global Summer Campaign with Exclusive Travel Offers

    July 18, 2025
    Exclusive discounts, cashback, and exchange …Read More »
  • Our Brands
  • CybersecAsia
  • MartechAsia
  • Home
  • About Us
  • Contact Us
  • Sitemap
  • Privacy & Cookies
  • Terms of Use
  • Advertising & Reprint Policy
  • Media Kit
  • Subscribe
  • Manage Subscriptions
  • Newsletter

Copyright © 2025 DigiconAsia All Rights Reserved.