RECENT STORIES:

Addressing digital sovereignty in a data-driven world
From generative AI to agentic AI
Trip.com Group Limited Reports Unaudited Second Quarter and First Half...
XtalPi Holdings Announces 2025 Interim Results
XtalPi Holdings Announces 2025 Interim Results
Gill Capital redefines retail product discovery with Google-quality se...
LOGIN REGISTER
DigiconAsia
  • Features
    • Featured

      From generative AI to agentic AI

      From generative AI to agentic AI

      Friday, August 29, 2025, 10:10 AM Asia/Singapore | Features
    • Featured

      Resilience the true benchmark for smart infrastructure

      Resilience the true benchmark for smart infrastructure

      Wednesday, August 27, 2025, 8:26 PM Asia/Singapore | Features, Smart Cities
    • Featured

      Studies show AI and automation the way forward for finance

      Studies show AI and automation the way forward for finance

      Wednesday, August 20, 2025, 10:07 AM Asia/Singapore | Features, News
  • News
    • Featured

      GPT-5 flopped: is the US AI hype finally catching a reality check?

      GPT-5 flopped: is the US AI hype finally catching a reality check?

      Wednesday, August 27, 2025, 8:40 PM Asia/Singapore | News, Newsletter
    • Featured

      Robotic automation boosts vegetable planting and harvest efficiency in China

      Robotic automation boosts vegetable planting and harvest efficiency in China

      Wednesday, August 27, 2025, 5:29 PM Asia/Singapore | News, Newsletter
    • Featured

      Debate over “seemingly conscious AI” raises ethical and societal concerns among experts

      Debate over “seemingly conscious AI” raises ethical and societal concerns among experts

      Wednesday, August 27, 2025, 5:14 PM Asia/Singapore | News, Newsletter
  • Perspectives
  • Tips & Strategies
  • Whitepapers
  • Awards 2023
  • Directory
  • E-Learning

Select Page

News

US security agencies urge migration to memory safe programming

By DigiconAsia and CybersecAsia editors | Monday, June 30, 2025, 1:37 PM Asia/Singapore

US security agencies urge migration to memory safe programming

CISA and NSA release guidance for adopting memory-safe programming languages to nip decades-long system vulnerabilities in the bud.

For decades, memory-related vulnerabilities have been a persistent and costly challenge for cybersecurity professionals, frequently enabling devastating cyberattacks and compromising critical systems.

These vulnerabilities, which arise from programming errors in how software accesses or manages memory — such as buffer overflows; use-after-free; and dangling pointers — are especially common in languages such as C and C++, that lack built-in memory safety mechanisms. Industry studies consistently show that around 70% of severe security bugs are linked to memory safety issues, making them the most prevalent type of disclosed software vulnerability.

High-profile incidents such as Heartbleed and BadAlloc have illustrated the far-reaching consequences of these flaws, affecting everything from hospital records to industrial control systems. However, with last week’s announcement by the US Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) of a renewed push for systemic change, things are set to change for the better.

In a joint guidance document, the two agencies are urging software development teams and organizations to adopt memory-safe programming languages (called MSLs) such as Rust, Go, Java, Swift, Python, and C#, which incorporate automated memory management and compile-time checks to eliminate entire classes of vulnerabilities. The agencies stress that embedding memory safety at the programming language level shifts the responsibility from individual programmers to the tools themselves, offering a more robust and scalable defense against exploitation.

While acknowledging that transitioning legacy systems and large codebases to memory-safe languages presents challenges (including the need for developer training, tooling, and careful integration with existing software) the agencies emphasize that the long-term benefits for national security and software resilience are substantial. Their guidance provides practical strategies for adoption and highlights ways to harden existing non-memory-safe applications when a full transition is not feasible.

Nevertheless, recognizing that MSLs may not be the best option for every scenario, the US government’s message that efforts should take advantage of tools such as TRACTOR that can translate unsafe code through a Foreign Function Interface into MSL-compatible runtime code.

Share:

PreviousSM: Enabling Resilient and Sustainable Development
NextHow Nissin Foods turned tangled, siloed data into smooth-as-noodles actionable assets

Related Posts

Tapping digitalization in Sri Lanka to strengthen operations visibility, efficiency

Tapping digitalization in Sri Lanka to strengthen operations visibility, efficiency

November 17, 2020

Take this five-step approach to develop sustainable supply chains

Take this five-step approach to develop sustainable supply chains

June 1, 2023

The rise of ransomware 2.0

The rise of ransomware 2.0

November 17, 2020

Barriers to reaping digital transformation benefits singled out

Barriers to reaping digital transformation benefits singled out

April 28, 2021

Leave a reply Cancel reply

You must be logged in to post a comment.

Awards Nomination Banner

gamification list

PARTICIPATE NOW

top placement

Whitepapers

  • Achieve Modernization Without the Complexity

    Achieve Modernization Without the Complexity

    Transforming IT infrastructure is crucial …Download Whitepaper
  • 5 Steps to Boost IT Infrastructure Reliability

    5 Steps to Boost IT Infrastructure Reliability

    In today's fast-evolving tech landscape, …Download Whitepaper
  • Simplify Payroll Setup for Your Small Business

    Simplify Payroll Setup for Your Small Business

    In our free guide, "How …Download Whitepaper
  • Overcoming the Challenges of Cost & Complexity in the Cloud-first Era.

    Overcoming the Challenges of Cost & Complexity in the Cloud-first Era.

    Download Whitepaper

Middle Placement

Case Studies

  • Gill Capital redefines retail product discovery with Google-quality search

    Gill Capital redefines retail product discovery with Google-quality search

    Harnessing generative AI, agentic AI …Read More
  • Indonesia’s largest private hospital network modernizes operations with cloud migration  

    Indonesia’s largest private hospital network modernizes operations with cloud migration  

    PT Siloam International Hospitals improves …Read More
  • Maybank accelerates digital transformation with AI-driven innovation

    Maybank accelerates digital transformation with AI-driven innovation

    Maybank has entered into a strategic …Read More
  • India robotics firm transforms automation with virtual twins and low-code platform adoption

    India robotics firm transforms automation with virtual twins and low-code platform adoption

    Adopting a unified digital platform …Read More

Bottom Sidebar

Other News

  • Trip.com Group Limited Reports Unaudited Second Quarter and First Half of 2025 Financial Results

    August 28, 2025
    SINGAPORE, Aug. 28, 2025 /PRNewswire/ …Read More »
  • XtalPi Holdings Announces 2025 Interim Results

    August 27, 2025
    SHENZHEN, China, Aug. 27, 2025 …Read More »
  • XtalPi Holdings Announces 2025 Interim Results

    August 27, 2025
    SHENZHEN, China, Aug. 27, 2025 …Read More »
  • FNZ’s employee shareholders land initial legal blow in share dilution battle

    August 27, 2025
    LONDON, Aug. 27, 2025 /PRNewswire/ …Read More »
  • Fosun International: Total Revenue for the First Half of 2025 Reaches RMB87.28 Billion, Industrial Operation Profit Amounts to RMB3.15 Billion

    August 27, 2025
    HONG KONG, Aug. 27, 2025 …Read More »
  • Our Brands
  • CybersecAsia
  • MartechAsia
  • Home
  • About Us
  • Contact Us
  • Sitemap
  • Privacy & Cookies
  • Terms of Use
  • Advertising & Reprint Policy
  • Media Kit
  • Subscribe
  • Manage Subscriptions
  • Newsletter

Copyright © 2025 DigiconAsia All Rights Reserved.