Apple’s guide represents the information that the company feels you should be aware of if you’re developing for OS X or iOS, “from scripts for your own use to commercial software applications”.
Just to give you the flavour, the contents include:
- Types of security vulnerabilities
- Avoiding buffer overflows and underflows
- Validating Input and Interprocess Communication
- Race Conditions and Secure File Operations
- Elevating Privileges Safely
- Designing Secure User Interfaces
- Designing Secure Helpers and Daemons
- Avoiding Injection Attacks and XSS
- Security Development Checklists
- Third-Party Software Security Guidelines
The 123-page document is here.
Small Blue-Green World