RECENT STORIES:

Addressing digital sovereignty in a data-driven world
Asia the true testbed for AI agents
The reality of responsible AI appreciation: Eight ground-level perspec...
Scienjoy Holding Corporation Receives Nasdaq Notification Letter Regar...
GLOBAL CEOS TO CONVENE IN BEIJING FOR LANDMARK FORUM ON SUSTAINABLE TR...
PhotonPay Launches Physical Mastercard Commercial Credit Card to Empow...
LOGIN REGISTER
DigiconAsia
  • Features
    • Featured

      Asia the true testbed for AI agents

      Asia the true testbed for AI agents

      Wednesday, July 16, 2025, 2:42 PM Asia/Singapore | Customer Experience, Features
    • Featured

      Appreciating AI means honoring accountability and integrity, beyond commercial hype

      Appreciating AI means honoring accountability and integrity, beyond commercial hype

      Tuesday, July 15, 2025, 2:23 PM Asia/Singapore | Features, Newsletter
    • Featured

      AI and the Great Work Reallocation in Asia Pacific

      AI and the Great Work Reallocation in Asia Pacific

      Thursday, July 10, 2025, 9:10 AM Asia/Singapore | Features, Future of Work
  • News
    • Featured

      Chatbot’s NAZI controversy prompts overhaul and new hallucinations features

      Chatbot’s NAZI controversy prompts overhaul and new hallucinations features

      Tuesday, July 15, 2025, 3:42 PM Asia/Singapore | News, Newsletter
    • Featured

      AI chatbot taken offline after generating controversial trope, sparking international backlash

      AI chatbot taken offline after generating controversial trope, sparking international backlash

      Friday, July 11, 2025, 4:35 PM Asia/Singapore | News, Newsletter
    • Featured

      Can inefficient meetings affect workplace productivity in the region?

      Can inefficient meetings affect workplace productivity in the region?

      Tuesday, July 8, 2025, 3:59 PM Asia/Singapore | News, Newsletter
  • Perspectives
  • Tips & Strategies
  • Whitepapers
  • Awards 2023
  • Directory
  • E-Learning

Select Page

News

US security agencies urge migration to memory safe programming

By DigiconAsia and CybersecAsia editors | Monday, June 30, 2025, 1:37 PM Asia/Singapore

US security agencies urge migration to memory safe programming

CISA and NSA release guidance for adopting memory-safe programming languages to nip decades-long system vulnerabilities in the bud.

For decades, memory-related vulnerabilities have been a persistent and costly challenge for cybersecurity professionals, frequently enabling devastating cyberattacks and compromising critical systems.

These vulnerabilities, which arise from programming errors in how software accesses or manages memory — such as buffer overflows; use-after-free; and dangling pointers — are especially common in languages such as C and C++, that lack built-in memory safety mechanisms. Industry studies consistently show that around 70% of severe security bugs are linked to memory safety issues, making them the most prevalent type of disclosed software vulnerability.

High-profile incidents such as Heartbleed and BadAlloc have illustrated the far-reaching consequences of these flaws, affecting everything from hospital records to industrial control systems. However, with last week’s announcement by the US Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) of a renewed push for systemic change, things are set to change for the better.

In a joint guidance document, the two agencies are urging software development teams and organizations to adopt memory-safe programming languages (called MSLs) such as Rust, Go, Java, Swift, Python, and C#, which incorporate automated memory management and compile-time checks to eliminate entire classes of vulnerabilities. The agencies stress that embedding memory safety at the programming language level shifts the responsibility from individual programmers to the tools themselves, offering a more robust and scalable defense against exploitation.

While acknowledging that transitioning legacy systems and large codebases to memory-safe languages presents challenges (including the need for developer training, tooling, and careful integration with existing software) the agencies emphasize that the long-term benefits for national security and software resilience are substantial. Their guidance provides practical strategies for adoption and highlights ways to harden existing non-memory-safe applications when a full transition is not feasible.

Nevertheless, recognizing that MSLs may not be the best option for every scenario, the US government’s message that efforts should take advantage of tools such as TRACTOR that can translate unsafe code through a Foreign Function Interface into MSL-compatible runtime code.

Share:

PreviousSM: Enabling Resilient and Sustainable Development
NextHow Nissin Foods turned tangled, siloed data into smooth-as-noodles actionable assets

Related Posts

Mesolitica launches localized LLM for accurate translation of SEA languages and dialects

Mesolitica launches localized LLM for accurate translation of SEA languages and dialects

December 6, 2024

EV-adoption optimisms and anxieties: the battery clock is ticking down…

EV-adoption optimisms and anxieties: the battery clock is ticking down…

June 5, 2025

Switzerland ranked top for cyber risk literacy and education

Switzerland ranked top for cyber risk literacy and education

November 12, 2020

Are your children’s schools part of the 50% that are vulnerable to hackers?

Are your children’s schools part of the 50% that are vulnerable to hackers?

December 14, 2020

Leave a reply Cancel reply

You must be logged in to post a comment.

Awards Nomination Banner

gamification list

PARTICIPATE NOW

top placement

Whitepapers

  • Achieve Modernization Without the Complexity

    Achieve Modernization Without the Complexity

    Transforming IT infrastructure is crucial …Download Whitepaper
  • 5 Steps to Boost IT Infrastructure Reliability

    5 Steps to Boost IT Infrastructure Reliability

    In today's fast-evolving tech landscape, …Download Whitepaper
  • Simplify Payroll Setup for Your Small Business

    Simplify Payroll Setup for Your Small Business

    In our free guide, "How …Download Whitepaper
  • Overcoming the Challenges of Cost & Complexity in the Cloud-first Era.

    Overcoming the Challenges of Cost & Complexity in the Cloud-first Era.

    Download Whitepaper

Middle Placement

Case Studies

  • Roojai Insurance (Thailand) doubles agent productivity through digital transformation

    Roojai Insurance (Thailand) doubles agent productivity through digital transformation

    Roojai Insurance (Thailand) doubles agent …Read More
  • Malayan Insurance achieves IFRS 17 readiness with SAS

    Malayan Insurance achieves IFRS 17 readiness with SAS

    A leading Philippines non-life insurer …Read More
  • How Iress is moving to EveryOps

    How Iress is moving to EveryOps

    Scaling compliance, security & efficiency …Read More
  • How Nissin Foods turned tangled, siloed data into smooth-as-noodles actionable assets

    How Nissin Foods turned tangled, siloed data into smooth-as-noodles actionable assets

    The trick is to unify …Read More

Bottom Sidebar

Other News

  • Scienjoy Holding Corporation Receives Nasdaq Notification Letter Regarding Minimum Bid Price Deficiency

    July 16, 2025
    BEIJING, July 16, 2025 /PRNewswire/ …Read More »
  • GLOBAL CEOS TO CONVENE IN BEIJING FOR LANDMARK FORUM ON SUSTAINABLE TRANSITION

    July 15, 2025
    The inaugural Sustainable Markets Initiative …Read More »
  • PhotonPay Launches Physical Mastercard Commercial Credit Card to Empower Global Business Payments

    July 15, 2025
    HONG KONG, July 15, 2025 …Read More »
  • FIC Global Leads the Switch from Electrons to Photons for AI Factories

    July 15, 2025
    With 16 years of expertise …Read More »
  • Jianzhi Education Has Regained Compliance with Nasdaq’s Minimum Bid Price Requirement

    July 15, 2025
    BEIJING, July 15, 2025 /PRNewswire/ …Read More »
  • Our Brands
  • CybersecAsia
  • MartechAsia
  • Home
  • About Us
  • Contact Us
  • Sitemap
  • Privacy & Cookies
  • Terms of Use
  • Advertising & Reprint Policy
  • Media Kit
  • Subscribe
  • Manage Subscriptions
  • Newsletter

Copyright © 2025 DigiconAsia All Rights Reserved.