[metadata]
id = "ERR00-C"
type = "recommendation"
category = "ERR"
number = 0
title = "Adopt and implement a consistent and comprehensive error-handling policy"
description = """
A secure system is invariably subject to stresses, such as those caused by
attack, erroneous or malicious inputs, hardware or software faults,
unanticipated user behavior, and unexpected environmental changes that are
outside the bounds of "normal operation." Yet the system must continue to
deliver essential services in a timely manner, safely and securely. To
accomplish this, the system must exhibit qualities such
asrobustness,reliability,error tolerance,fault tolerance, performance, and
security. All of these system-quality attributes depend on consistent and
comprehensive error handling that supports the goals of the overall system.
ISO/IEC TR 24772, section 6.39.1 [ISO/IEC TR 24772], says: Effective error
handling (which includes error reporting, report aggregation, analysis,
response, and recovery) is a central aspect of the design, implementation,
maintenance, and operation of systems that exhibit survivability under stress.
Survivability is the capability of a system to fulfill its mission, in a timely
manner, despite an attack, accident, or other stress that is outside the bounds
of normal operation [Lipson 2000]. If full services cannot be maintained under a
given stress, survivable systems degrade gracefully, continue to deliver
essential services, and recover full services as conditions permit.
"""
severity = "Medium"
likelihood = "Probable"
priority = "P4"
level = "L3"
cert_version = "2016 Edition (Wiki)"
last_modified = "May 29, 2025"
[rules.cert_c.ERR00-C]
enabled = true
[references]
wiki = "https://wiki.sei.cmu.edu/confluence/display/c/ERR00-C.+Adopt+and+implement+a+consistent+and+comprehensive+error-handling+policy"
cwe = ["CWE-391", "CWE-544"]