CERT C와 MISRA C는 모두 C 언어의 안전성과 보안을 강화하기 위한 코딩 표준입니다.
두 표준은 공통적으로 정의되지 않은 동작(Undefined Behavior)을 방지하려는 목적을 가지고 있지만, 초점이 약간 다릅니다.
CERT C는 보안에 중점을 두고 있으며, MISRA C는 안전성과 신뢰성을 강조합니다.
두 표준의 차이점
- CERT C는 보안 취약점을 방지하기 위한 권고 사항과 규칙을 포함하며, 정적 분석 도구를 활용해 자동화된 검사를 권장합니다.
- MISRA C는 주로 임베디드 시스템에서의 안전성을 보장하기 위해 설계되었으며, 자동차, 철도, 의료 등 다양한 산업에서 사용됩니다.
이 두 표준은 상호 보완적으로 사용될 수 있으며, 특정 프로젝트의 요구사항에 따라 적절히 선택하거나 조합하여 적용할 수 있습니다.
CERT-C 관련 MISRA-C 규칙
| CERT Rule | Related Guidelines |
| DCL30-C | Rule 18.6 (required) |
| DCL31-C | Rule 8.1 (required) |
| DCL36-C | Rule 8.2 (required) |
| DCL36-C | Rule 8.4 (required) |
| DCL36-C | Rule 8.8 (required) |
| DCL36-C | Rule 17.3 (mandatory) |
| DCL37-C | Rule 21.1 (required) |
| DCL37-C | Rule 21.2 (required) |
| DCL40-C | Rule 8.4 (required) |
| DCL41-C | Rule 16.1 (required) |
| EXP30-C | Rule 13.2 (required) |
| EXP32-C | Rule 11.8 (required) |
| EXP36-C | Rule 11.1 (required) |
| EXP36-C | Rule 11.2 (required) |
| EXP36-C | Rule 11.5 (advisory) |
| EXP36-C | Rule 11.7 (required) |
| EXP37-C | Rule 8.2 (required) |
| EXP37-C | Rule 17.3 (mandatory) |
| EXP43-C | Rule 8.14 (required)1 |
| INT31-C | Rule 10.1 (required) |
| INT31-C | Rule 10.3 (required) |
| INT31-C | Rule 10.4 (required) |
| INT31-C | Rule 10.6 (required) |
| INT31-C | Rule 10.7 (required) |
| FLP30-C | Directive 1.1 (required) |
| FLP30-C | Rule 14.1 (required) |
| ARR30-C | Rule 18.1 (required) |
| ARR39-C | Rule 18.1 (required) |
| ARR39-C | Rule 18.2 (required) |
| ARR39-C | Rule 18.3 (required) |
| ARR39-C | Rule 18.4 (advisory) |
| STR34-C | Rule 10.1 (required) |
| STR34-C | Rule 10.2 (required) |
| STR34-C | Rule 10.3 (required) |
| STR34-C | Rule 10.4 (required) |
| MEM30-C | Rule 18.6 (required) |
| API03-C | Rule 21.3 (required) |
| API03-C | Directive 4.12 (required) |
| API04-C | Rule 21.3 (required) |
| API04-C | Directive 4.12 (required) |
| ARR02-C | Rule 8.11 (advisory) |
| ARR02-C | Rule 9.5 (required) |
| DCL01-C | Rule 5.3 (required) |
| DCL02-C | Directive 4.5 (advisory) |
| DCL07-C | Rule 8.2 (required) |
| DCL10-C | Rule 17.1 (required) |
| DCL11-C | Rule 17.1 (required) |
| DCL12-C | Directive 4.8 (advisory) |
| DCL13-C | Rule 8.13 (advisory) |
| DCL15-C | Rule 8.7 (advisory) |
| DCL15-C | Rule 8.8 (required) |
| DCL16-C | Rule 7.3 (required) |
| DCL18-C | Rule 7.1 (required) |
| DCL19-C | Rule 8.9 (advisory) |
| DCL20-C | Rule 8.2 (required) |
| DCL22-C | Rule 2.2 (required) |
| DCL23-C | Rule 5.1 (required) |
| DCL23-C | Rule 5.2 (required) |
| DCL23-C | Rule 5.3 (required) |
| DCL23-C | Rule 5.4 (required) |
| DCL23-C | Rule 5.5 (required) |
| ERR00-C | Rule 17.1 (required) |
| EXP00-C | Rule 12.1 (advisory) |
| EXP05-C | Rule 11.8 (required) |
| EXP08-C | Rule 18.1 (required) |
| EXP08-C | Rule 18.2 (required) |
| EXP08-C | Rule 18.3 (required) |
| EXP08-C | Rule 18.4 (advisory) |
| EXP10-C | Rule 13.5 (required) |
| EXP11-C | Directive 1.1 (required) |
| EXP14-C | Rule 10.5 |
| EXP19-C | Rule 15.6 (required) |
| INT02-C | Rule 10.1 (required) |
| INT02-C | Rule 10.3 (required) |
| INT02-C | Rule 10.4 (required) |
| INT02-C | Rule 10.6 (required) |
| INT02-C | Rule 10.7 (required) |
| INT02-C | Rule 10.8 (required) |
| INT07-C | Rule 10.1 (required) |
| INT07-C | Rule 10.3 (required) |
| INT07-C | Rule 10.4 (required) |
| INT09-C | Rule 8.12 (required) |
| INT12-C | Rule 10.1 (required) |
| INT14-C | Rule 6.1 (required) |
| INT14-C | Rule 6.2 (required) |
| MEM05-C | Rule 17.2 (required) |
| MSC04-C | Rule 1.2 (advisory) |
| MSC04-C | Rule 3.1 (required) |
| MSC04-C | Directive 4.4 (advisory) |
| MSC07-C | Rule 2.1 (required) |
| MSC09-C | Directive 1.1 (required) |
| MSC09-C | Rule 4.1 (required) |
| MSC12-C | Rule 2.2 (required) |
| MSC20-C | Rule 16.2 (required) |
| MSC24-C | Rule 21.3 (required) |
| PRE00-C | Directive 4.9 (advisory) |
| PRE01-C | Rule 20.7 (required) |
| PRE06-C | Directive 4.10 (required) |
| PRE07-C | Rule 4.2 (advisory) |
| STR01-C | Directive 4.12 (required) |
| STR04-C | Rule 10.1 (required) |
| STR04-C | Rule 10.2 (required) |
| STR04-C | Rule 10.3 (required) |
| STR04-C | Rule 10.4 (required) |
728x90
'소프트웨어 개발(SW Dev) > Rule(CERT C)' 카테고리의 다른 글
| CERT C - WIN 규칙 목록 (1) | 2024.11.23 |
|---|---|
| CERT C - POS 규칙 목록 (0) | 2024.11.22 |
| CERT C - API 규칙 목록 (0) | 2024.11.21 |
| CERT C - MSC 규칙 목록 (2) | 2024.11.20 |
| CERT C - CON 규칙 목록 (0) | 2024.11.18 |
댓글