CQE-9198: Comprehensive Practices View

 
Comprehensive Practices View
View ID: 9198 Maturity: Preliminary
+ View Data

View Objective

This view (slice) covers all the Practices in CQE.

View Filter: name()='Practice'

+ View Metrics
Formal CQE IDs (this view)Micro Elements (this view)Total Catalog
Total Elements0out of16040out of66226
Views0out of77
Quality_Characteristics0out of4141
Quality_Issues0out of112112
Practices40out of4040
Consequences0out of2626
View Components
View Components
A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z
 
Array Indexing
Practice ID: 9049 Maturity: Preliminary
+ Description

Description Summary

Array Indexing

Extended Description

Software that is unaware of array index bounds incurs the risk of corruption of relevant memory, and perhaps instructions, possibly leading to a crash, the risk of data integrity loss, and the risk of unauthorized access to sensitive data.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
CanPrecede
Co
Consequence
9022Memory Corruption
Default Graph (primary)9001
CanPrecede
Co
Consequence
9054Data Corruption
Default Graph (primary)9001
CanPrecede
Co
Consequence
9143Failure
Default Graph (primary)9001
CanPrecede
Co
Consequence
9152Unauthorized Access to Sensitive Information
Default Graph (primary)9001
ParentOf
Is
Issue
129Array Index Improper Input Neutralization
Quality Issues Organized by Practices (primary)9002
 
Authentication Practices
Practice ID: 9063 Maturity: Preliminary
+ Description

Description Summary

Authentication Practices

Extended Description

Software featuring weak authentication practices incurs the risk of exposing resources and functionality to unintended actors, possibly leading to compromised sensitive information and even the execution of arbitrary code.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
CanPrecede
Co
Consequence
9017Arbitrary Code Execution
Default Graph (primary)9001
CanPrecede
Co
Consequence
9032Exposed Resources
Default Graph (primary)9001
CanPrecede
Co
Consequence
9035Exposed Functionality
Default Graph (primary)9001
CanPrecede
Co
Consequence
9152Unauthorized Access to Sensitive Information
Default Graph (primary)9001
CanPrecede
Co
Consequence
9189Information Disclosure
Default Graph (primary)9001
ParentOf
Is
Issue
798Hard-Coded Credentials Usage for Remote Authentication
Quality Issues Organized by Practices (primary)9002
MemberOf
Vi
View
9002Quality Issues Organized by Practices
Quality Issues Organized by Practices (primary)9002
 
Cache Maintenance
Practice ID: 9096 Maturity: Preliminary
+ Description

Description Summary

Cache Maintenance

Extended Description

Software deployed in distributed environment that does not maintain redundancy of data (such as cache) and code increases the time with which they are accessed.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
ChildOf
Pr
Practice
9037Resource Management
Quality Issues Organized by Practices (primary)9002
CanPrecede
Co
Consequence
9140Increased (Access) Time
Default Graph (primary)9001
ParentOf
Is
Issue
9069Data Access Operations Outside of Expected Data Manager Component
Quality Issues Organized by Practices (primary)9002
 
Code Comments
Practice ID: 9089 Maturity: Preliminary
+ Description

Description Summary

Code Comments

Extended Description

Software that does not properly represent comments can cause excessive modification effort.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
CanPrecede
Co
Consequence
9113Excessive Modification Effort
Default Graph (primary)9001
ParentOf
Is
Issue
9161Excessive Volume of Commented-out Code
Quality Issues Organized by Practices (primary)9002
MemberOf
Vi
View
9002Quality Issues Organized by Practices
Quality Issues Organized by Practices (primary)9002
 
Coding Practices
Practice ID: 9176 Maturity: Preliminary
+ Description

Description Summary

Coding Practices

Extended Description

Software featuring known under-efficient coding practices requires excessive computational resources.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
CanPrecede
Co
Consequence
9039Excessive Resource Expenditure
Default Graph (primary)9001
ParentOf
Is
Issue
252Unchecked Return Parameter Value of Invokable Control Element with Read, Write, and Manage Access to Platform or Data Resource
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
456Storable and Member Data Element Missing Initialization
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
704Incorrect Type Conversion or Cast
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9004Static Member Data Element outside of a Singleton Class Element
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9005Data Element Aggregating an Excessively Large Number of Non-Primitive Elements
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9014Creation of Immutable Text Using String Concatenation
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9062Invokable Control Element with Variadic Parameter Element
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9100Runtime Resource Management Control Element in a Component Built to Run on Application Servers
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9102Missing Serialization Control Element
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9110Serializable Data Element Containing non-Serializable Item Elements
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9112Allocation of Memory without Associated Release
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9116Data Resource Access without Use of Connection Pooling
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9138Float Type Storable and Member Data Element Comparison with Equality Operator
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9156Class Instance Self Destruction Control Element
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9182Use of Data Element without Invoking Deconstructor Method
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9193Persistent Storable Data Element without Associated Comparison Control Element
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9194Storable or Member Data Element containing Pointer Item Element without Proper Copy Control Element
Quality Issues Organized by Practices (primary)9002
MemberOf
Vi
View
9002Quality Issues Organized by Practices
Quality Issues Organized by Practices (primary)9002
 
Cryptography
Practice ID: 9136 Maturity: Preliminary
+ Description

Description Summary

Software using a broken or risky cryptographic algorithm incurs the risk of sensitive data being compromised.
+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
CanPrecede
Co
Consequence
9152Unauthorized Access to Sensitive Information
Default Graph (primary)9001
ParentOf
Is
Issue
327Broken or Risky Cryptographic Algorithm Usage
Quality Issues Organized by Practices (primary)9002
MemberOf
Vi
View
9002Quality Issues Organized by Practices
Quality Issues Organized by Practices (primary)9002
 
Data Access Constructs
Practice ID: 9105 Maturity: Preliminary
+ Description

Description Summary

Data Access Constructs

Extended Description

Software featuring known under-efficient SQL Query and Data Access constructs requires excessive computational resources.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
CanPrecede
Co
Consequence
9039Excessive Resource Expenditure
Default Graph (primary)9001
ParentOf
Is
Issue
9027Excessive Data Query Operations in a Large Data Table
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9103Excessive Execution of Sequential Searches of Data Resource
Quality Issues Organized by Practices (primary)9002
ParentOf
Pr
Practice
9104Data Encapsulation
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9175Excessive Number of Indices for a Large Data Table
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9187Excessive Index Range Scan for a Data Resource
Quality Issues Organized by Practices (primary)9002
MemberOf
Vi
View
9002Quality Issues Organized by Practices
Quality Issues Organized by Practices (primary)9002
 
Data Encapsulation
Practice ID: 9104 Maturity: Preliminary
+ Description

Description Summary

Data Encapsulation

Extended Description

Software that does not follow the principles of data encapsulation incurs the risk of data corruption.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
ChildOf
Pr
Practice
9105Data Access Constructs
Quality Issues Organized by Practices (primary)9002
CanPrecede
Co
Consequence
9054Data Corruption
Default Graph (primary)9001
ParentOf
Is
Issue
9153Data Element Declared Public
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9181Method Containing Access of a Member Element from Another Class
Quality Issues Organized by Practices (primary)9002
 
Data Integrity Management
Practice ID: 9076 Maturity: Preliminary
+ Description

Description Summary

Data Integrity Management

Extended Description

Software without consistently-enforced approach to data integrity management incurs the risk of behaving unexpectedly.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
CanPrecede
Co
Consequence
9168Unexpected Behaviors
Default Graph (primary)9001
ParentOf
Is
Issue
9159Data Access Control Element from Outside Designated Data Manager Component
Quality Issues Organized by Practices (primary)9002
 
Embedded Network Configuration
Practice ID: 9068 Maturity: Preliminary
+ Description

Description Summary

Embedded Network Configuration

Extended Description

Software featuring network configuration within its own code incurs the risk of failure when the remote resource changes.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
CanPrecede
Co
Consequence
9143Failure
Default Graph (primary)9001
ParentOf
Is
Issue
9042Initialization with Hard-Coded Network Resource Configuration Data
Quality Issues Organized by Practices (primary)9002
 
Error/Exception Handling
Practice ID: 9131 Maturity: Preliminary
+ Description

Description Summary

Inconsistent/Incomplete Handling

Extended Description

Software without consistent and complete handling of errors and exceptions makes it impossible to accurately identify and adequately respond to unusual and unexpected situations.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
CanPrecede
Co
Consequence
9113Excessive Modification Effort
Default Graph (primary)9001
CanPrecede
Co
Consequence
9145Degraded Comprehension
Default Graph (primary)9001
ParentOf
Is
Issue
252Unchecked Return Parameter Value of Invokable Control Element with Read, Write, and Manage Access to Platform or Data Resource
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
396Declaration of Catch for Generic Exception
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
397Declaration of Throws for Generic Exception
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9108Empty Exception Block
Quality Issues Organized by Practices (primary)9002
MemberOf
Vi
View
9002Quality Issues Organized by Practices
Quality Issues Organized by Practices (primary)9002
 
Execution Status Control
Practice ID: 9010 Maturity: Preliminary
+ Description

Description Summary

Execution Status Control

Extended Description

Software unaware of accurate execution status control incurs the risk of bad data being used in operations, possibly leading to a crash or other unintended behaviors.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
CanPrecede
Co
Consequence
9143Failure
Default Graph (primary)9001
ParentOf
Is
Issue
252Unchecked Return Parameter Value of Invokable Control Element with Read, Write, and Manage Access to Platform or Data Resource
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
396Declaration of Catch for Generic Exception
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
397Declaration of Throws for Generic Exception
Quality Issues Organized by Practices (primary)9002
 
File Path Control
Practice ID: 9183 Maturity: Preliminary
+ Description

Description Summary

File Path Control

Extended Description

Software that is unaware of file path control incurs the risk of exposition of sensitive data, the risk of corruption of critical files, such as programs, libraries, or important data used in protection mechanisms.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
CanPrecede
Co
Consequence
9054Data Corruption
Default Graph (primary)9001
CanPrecede
Co
Consequence
9152Unauthorized Access to Sensitive Information
Default Graph (primary)9001
CanPrecede
Co
Consequence
9189Information Disclosure
Default Graph (primary)9001
ParentOf
Is
Issue
22Path Traversal Improper Input Neutralization
Quality Issues Organized by Practices (primary)9002
 
File Upload Control
Practice ID: 9095 Maturity: Preliminary
+ Description

Description Summary

File Upload Control

Extended Description

Software unaware of file upload control incurs the risk of arbitrary code execution or other unexpected behaviors based on the type, extension, or other properties of the uploaded file.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
CanPrecede
Co
Consequence
9017Arbitrary Code Execution
Default Graph (primary)9001
ParentOf
Is
Issue
434File Upload Improper Input Neutralization
Quality Issues Organized by Practices (primary)9002
 
Hard-Coding
Practice ID: 9142 Maturity: Preliminary
+ Description

Description Summary

Hard-Coding

Extended Description

Software that depends on hard-coded pieces of information within its own code reduces adaptability.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
CanPrecede
Co
Consequence
9132Reduced Adaptability
Default Graph (primary)9001
ParentOf
Is
Issue
9046Excessive Use of Hard-Coded Literals in Initialization
Quality Issues Organized by Practices (primary)9002
 
Inheritance and Polymorphism
Practice ID: 9157 Maturity: Preliminary
+ Description

Description Summary

Inheritance and Polymorphism

Extended Description

Software that does not follow the principles of inheritance and polymorphism results in unexpected behaviors.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
ChildOf
Pr
Practice
9088Reuse
Quality Issues Organized by Practices (primary)9002
CanPrecede
Co
Consequence
9168Unexpected Behaviors
Default Graph (primary)9001
ParentOf
Is
Issue
9013Child Class Element without Virtual Destructor unlike its Parent Class Element
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9060Multiple Inheritance from Concrete Classes
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9087Parent Class Element with References to Child Class Element
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9123Class with an Excessive Inheritance Level
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9147Parent Class Element without Virtual Destructor Method Element
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9165Class with Excessive Number of Child Classes
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9166Class Element with Virtual Method Element without Virtual Destructor
Quality Issues Organized by Practices (primary)9002
 
Initialization Practices
Practice ID: 9170 Maturity: Preliminary
+ Description

Description Summary

Initialization Practices

Extended Description

Software featuring weak initialization practices incurs the risk of logic errors within the program, possibly leading to a security problem.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
CanPrecede
Co
Consequence
9058Security Vulnerabilities
Default Graph (primary)9001
CanPrecede
Co
Consequence
9146Math Error
Default Graph (primary)9001
ParentOf
Is
Issue
456Storable and Member Data Element Missing Initialization
Quality Issues Organized by Practices (primary)9002
MemberOf
Vi
View
9002Quality Issues Organized by Practices
Quality Issues Organized by Practices (primary)9002
 
Iteration Control
Practice ID: 9083 Maturity: Preliminary
+ Description

Description Summary

Iteration Control

Extended Description

Software unaware of iteration control incurs the risk of unexpected consumption of resources, such as CPU cycles or memory, possibly leading to a crash or program exit due to exhaustion of resources.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
CanPrecede
Co
Consequence
9039Excessive Resource Expenditure
Default Graph (primary)9001
CanPrecede
Co
Consequence
9143Failure
Default Graph (primary)9001
CanPrecede
Co
Consequence
9177Resource Exhaustion
Default Graph (primary)9001
ParentOf
Is
Issue
606Unchecked Input for Loop Condition
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
835Loop with Unreachable Exit Condition ('Infinite Loop')
Quality Issues Organized by Practices (primary)9002
ParentOf
Pr
Practice
9061Recursion
Quality Issues Organized by Practices (primary)9002
MemberOf
Vi
View
9002Quality Issues Organized by Practices
Quality Issues Organized by Practices (primary)9002
 
Layered Architectures
Practice ID: 9124 Maturity: Preliminary
+ Description

Description Summary

Layered Architectures

Extended Description

Software that does not follow the principles of layered architectures (such as strict partitioning and strict call hierarchy) decreases comprehensibility as well as simplicity to evolve the code.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
CanPrecede
Co
Consequence
9113Excessive Modification Effort
Default Graph (primary)9001
CanPrecede
Co
Consequence
9145Degraded Comprehension
Default Graph (primary)9001
ParentOf
Is
Issue
9007Architecture with Number of Horizontal Layers Outside of Expected Range
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9052Invocation of a Control Element at an Unnecessarily Deep Horizontal Layer
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9184Use of Same Invokable Control Element in Multiple Architectural Layers
Quality Issues Organized by Practices (primary)9002
MemberOf
Vi
View
9002Quality Issues Organized by Practices
Quality Issues Organized by Practices (primary)9002
 
Locking
Practice ID: 9178 Maturity: Preliminary
+ Description

Description Summary

Locking

Extended Description

Software featuring inconsistent locking discipline incurs the risk of deadlock.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
CanPrecede
Co
Consequence
9028Deadlock
Default Graph (primary)9001
ParentOf
Is
Issue
667Shared Resource Improper Locking
Quality Issues Organized by Practices (primary)9002
 
Memory Management
Practice ID: 9078 Maturity: Preliminary
+ Description

Description Summary

Memory Management

Extended Description

When software does not properly manage memory, it can consume more memory than is necessary or incur the risk of corruption of relevant memory - and perhaps instructions - possibly leading to a crash, the risk of data integrity loss, and the risk of unauthorized access to sensitive data.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
CanPrecede
Co
Consequence
9022Memory Corruption
Default Graph (primary)9001
CanPrecede
Co
Consequence
9054Data Corruption
Default Graph (primary)9001
CanPrecede
Co
Consequence
9143Failure
Default Graph (primary)9001
CanPrecede
Co
Consequence
9152Unauthorized Access to Sensitive Information
Default Graph (primary)9001
ParentOf
Is
Issue
120Buffer Copy without Checking Size of Input
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
789Uncontrolled Memory Allocation
Quality Issues Organized by Practices (primary)9002
MemberOf
Vi
View
9002Quality Issues Organized by Practices
Quality Issues Organized by Practices (primary)9002
 
Modular Development
Practice ID: 9016 Maturity: Preliminary
+ Description

Description Summary

Modularity

Extended Description

Software that does not follow the principles of modularity causes excessive propagation of modification impacts.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
CanPrecede
Co
Consequence
9141Excessive Propagation of Modification Impacts
Default Graph (primary)9001
ParentOf
Is
Issue
9018Modules with Circular Dependencies
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9024Callable and Method Control Element Number of Outward Calls
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9151Source Code File with Excessive Number of Lines of Code
Quality Issues Organized by Practices (primary)9002
MemberOf
Vi
View
9002Quality Issues Organized by Practices
Quality Issues Organized by Practices (primary)9002
 
Numerical Conversion
Practice ID: 9085 Maturity: Preliminary
+ Description

Description Summary

Numerical Conversion

Extended Description

Software featuring weak numerical conversion practices incurs the risk of using the wrong number and generating incorrect results, possibly introducing new vulnerability when related to resource allocation and security decisions.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
CanPrecede
Co
Consequence
9058Security Vulnerabilities
Default Graph (primary)9001
CanPrecede
Co
Consequence
9143Failure
Default Graph (primary)9001
CanPrecede
Co
Consequence
9146Math Error
Default Graph (primary)9001
CanPrecede
Co
Consequence
9177Resource Exhaustion
Default Graph (primary)9001
ParentOf
Is
Issue
681Numeric Types Incorrect Conversion
Quality Issues Organized by Practices (primary)9002
MemberOf
Vi
View
9002Quality Issues Organized by Practices
Quality Issues Organized by Practices (primary)9002
 
OS Command Execution
Practice ID: 9006 Maturity: Preliminary
+ Description

Description Summary

OS Command Control

Extended Description

Software unaware of OS command control incurs the risk of unauthorized command execution, possibly used to disable the software, or possibly leading to unauthorized read and modify data access.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
CanPrecede
Co
Consequence
9030Unauthorized Code Execution
Default Graph (primary)9001
CanPrecede
Co
Consequence
9030Unauthorized Code Execution
Default Graph (primary)9001
CanPrecede
Co
Consequence
9143Failure
Default Graph (primary)9001
CanPrecede
Co
Consequence
9152Unauthorized Access to Sensitive Information
Default Graph (primary)9001
ParentOf
Is
Issue
78OS Command Injection Improper Input Neutralization
Quality Issues Organized by Practices (primary)9002
 
Output Formatting Control
Practice ID: 9129 Maturity: Preliminary
+ Description

Description Summary

Formatting Control

Extended Description

Software that is unaware of formatting control incurs the risk of execution of arbitrary code, excessive memory or disk consumption, or the risk of information disclosure, which can severely simplify exploitation of the software.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
CanPrecede
Co
Consequence
9017Arbitrary Code Execution
Default Graph (primary)9001
CanPrecede
Co
Consequence
9058Security Vulnerabilities
Default Graph (primary)9001
CanPrecede
Co
Consequence
9189Information Disclosure
Default Graph (primary)9001
ParentOf
Is
Issue
134Format String Improper Input Neutralization
Quality Issues Organized by Practices (primary)9002
 
Output Generation
Practice ID: 9097 Maturity: Preliminary
+ Description

Description Summary

Output Generation

Extended Description

Software featuring weak output generation practices incurs the risk of arbitrary code execution, the risk of sensitive data being compromised, and many other nefarious consequences.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
CanPrecede
Co
Consequence
9017Arbitrary Code Execution
Default Graph (primary)9001
CanPrecede
Co
Consequence
9152Unauthorized Access to Sensitive Information
Default Graph (primary)9001
ParentOf
Is
Issue
79Cross-site Scripting Improper Input Neutralization
Quality Issues Organized by Practices (primary)9002
 
Recursion
Practice ID: 9061 Maturity: Preliminary
+ Description

Description Summary

Recursion

Extended Description

Software that is unaware of recursion incurs the risk of exceeding resource and capacity limits.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
ChildOf
Pr
Practice
9083Iteration Control
Quality Issues Organized by Practices (primary)9002
CanPrecede
Co
Consequence
9039Excessive Resource Expenditure
Default Graph (primary)9001
CanPrecede
Co
Consequence
9177Resource Exhaustion
Default Graph (primary)9001
ParentOf
Is
Issue
674Uncontrolled Recursion
Quality Issues Organized by Practices (primary)9002
 
Remote System Call Blocking
Practice ID: 9026 Maturity: Preliminary
+ Description

Description Summary

Remote System Call Blocking

Extended Description

Software featuring blocking calls to remote systems incurs the risk of its own failure when the remote systems fails to process the call correctly.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
CanPrecede
Co
Consequence
9143Failure
Default Graph (primary)9001
ParentOf
Is
Issue
9173Synchronous Call Time-Out Absence
Quality Issues Organized by Practices (primary)9002
 
Resource Bounds
Practice ID: 9094 Maturity: Preliminary
+ Description

Description Summary

Resource Bounds

Extended Description

Software that is unaware of resource bounds or fails to monitor resources incurs the risk of exceeding resource and capacity limits.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
CanPrecede
Co
Consequence
9039Excessive Resource Expenditure
Default Graph (primary)9001
CanPrecede
Co
Consequence
9177Resource Exhaustion
Default Graph (primary)9001
ParentOf
Is
Issue
772Missing Release of Resource after Effective Lifetime
Quality Issues Organized by Practices (primary)9002
 
Resource Identification Control
Practice ID: 9127 Maturity: Preliminary
+ Description

Description Summary

Resource Identification Control

Extended Description

Software unaware of resource identification control incurs the risk of unauthorized access to or modification of sensitive data and system resources, including configuration files and files containing sensitive information.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
ChildOf
Pr
Practice
9037Resource Management
Quality Issues Organized by Practices (primary)9002
CanPrecede
Co
Consequence
9152Unauthorized Access to Sensitive Information
Default Graph (primary)9001
ParentOf
Is
Issue
99Name or Reference Resolution Improper Input Neutralization
Quality Issues Organized by Practices (primary)9002
 
Resource Lifecycle
Practice ID: 9080 Maturity: Preliminary
+ Description

Description Summary

Resource Lifecycle

Extended Description

Software unaware of resource lifecycle incurs the risk of preventing all other processes from accessing the same type of resource.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
ChildOf
Pr
Practice
9037Resource Management
Quality Issues Organized by Practices (primary)9002
CanPrecede
Co
Consequence
9177Resource Exhaustion
Default Graph (primary)9001
ParentOf
Is
Issue
672Expired or Released Resource Usage
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
772Missing Release of Resource after Effective Lifetime
Quality Issues Organized by Practices (primary)9002
 
Resource Management
Practice ID: 9037 Maturity: Preliminary
+ Description

Description Summary

Resource Management
+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
ParentOf
Pr
Practice
9080Resource Lifecycle
Quality Issues Organized by Practices (primary)9002
ParentOf
Pr
Practice
9096Cache Maintenance
Quality Issues Organized by Practices (primary)9002
ParentOf
Pr
Practice
9127Resource Identification Control
Quality Issues Organized by Practices (primary)9002
ParentOf
Pr
Practice
9144Resource Monitoring
Quality Issues Organized by Practices (primary)9002
MemberOf
Vi
View
9002Quality Issues Organized by Practices
Quality Issues Organized by Practices (primary)9002
 
Resource Monitoring
Practice ID: 9144 Maturity: Preliminary
+ Description

Description Summary

Resource Monitoring

Extended Description

Software that is unaware of resource bounds or fails to monitor resources incurs the risk of exceeding resource and capacity limits.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
ChildOf
Pr
Practice
9037Resource Management
Quality Issues Organized by Practices (primary)9002
CanPrecede
Co
Consequence
9039Excessive Resource Expenditure
Default Graph (primary)9001
CanPrecede
Co
Consequence
9177Resource Exhaustion
Default Graph (primary)9001
ParentOf
Is
Issue
788Memory Location Access After End of Buffer
Quality Issues Organized by Practices (primary)9002
 
Reuse
Practice ID: 9088 Maturity: Preliminary
+ Description

Description Summary

Reuse

Extended Description

Software that does not follow the principles of reuse requires more maintenance effort in order to propagate changes to all instances of duplicated code.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
ChildOf
Ch
Characteristic
9055Reusability
Default Graph (primary)9001
CanPrecede
Co
Consequence
9113Excessive Modification Effort
Default Graph (primary)9001
ParentOf
Is
Issue
9011Use of Redundant Code
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9079Unreachable Invokable Control Element
Quality Issues Organized by Practices (primary)9002
ParentOf
Pr
Practice
9157Inheritance and Polymorphism
Quality Issues Organized by Practices (primary)9002
MemberOf
Vi
View
9002Quality Issues Organized by Practices
Quality Issues Organized by Practices (primary)9002
 
SQL Command Execution
Practice ID: 9003 Maturity: Preliminary
+ Description

Description Summary

SQL Command Control

Extended Description

Software unaware of SQL command control incurs the risk of unauthorized read, modify, and delete access to sensitive data.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
CanPrecede
Co
Consequence
9152Unauthorized Access to Sensitive Information
Default Graph (primary)9001
ParentOf
Is
Issue
89SQL Injection Improper Input Neutralization
Quality Issues Organized by Practices (primary)9002
 
State Protection
Practice ID: 9172 Maturity: Preliminary
+ Description

Description Summary

State Protection

Extended Description

Software deployed in multi-thread environments that does not protect their state can experience deadlock or livelock.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
CanPrecede
Co
Consequence
9028Deadlock
Default Graph (primary)9001
CanPrecede
Co
Consequence
9082Livelock
Default Graph (primary)9001
ParentOf
Is
Issue
9018Modules with Circular Dependencies
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9070Named Callable and Method Control Element in Multi-Thread Context with non-Final Static Storable or Member Element
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9192Singleton Class Instance Creation without Proper Lock Element Management
Quality Issues Organized by Practices (primary)9002
 
Stored Procedures & Functions
Practice ID: 9167 Maturity: Preliminary
+ Description

Description Summary

Stored Procedures and Functions

Extended Description

Software that does not leverage database capabilities to efficiently run data processing (such as stored procedures and functions) requires excessive computational resources.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
CanPrecede
Co
Consequence
9039Excessive Resource Expenditure
Default Graph (primary)9001
ParentOf
Is
Issue
9077Excessive Number of Data Accesses using Inefficient Procedures
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9122Non-SQL Named Callable and Method Control Element with Excessive Number of Data Resource Access
Quality Issues Organized by Practices (primary)9002
 
Structured Programming
Practice ID: 9121 Maturity: Preliminary
+ Description

Description Summary

Structured Programming

Extended Description

Software that does not follow the principles of structured programming degrades comprehensibility.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
CanPrecede
Co
Consequence
9145Degraded Comprehension
Default Graph (primary)9001
ParentOf
Is
Issue
9134Unconditional Control Flow Transfer outside of Switch Block
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9185Excessive Cyclomatic Complexity Within an Invokable Control Element
Quality Issues Organized by Practices (primary)9002
ParentOf
Is
Issue
9220Excessive Use of Unconditional Branching
Quality Issues Organized by Practices (primary)9002
 
Unrestricted Data Operations
Practice ID: 9036 Maturity: Preliminary
+ Description

Description Summary

Unrestricted Data Operations

Extended Description

Software that does not cap the number of data operations degrades comprehensibility by requiring the understanding of too many external data structures.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
CanPrecede
Co
Consequence
9145Degraded Comprehension
Default Graph (primary)9001
ParentOf
Is
Issue
9160Invokable Control Element with Excessive File or Data Access Operations
Quality Issues Organized by Practices (primary)9002
 
Unrestricted Parameters
Practice ID: 9137 Maturity: Preliminary
+ Description

Description Summary

Unrestricted Parameters

Extended Description

Software that does not cap the number of parameters degrades comprehensibility.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
CanPrecede
Co
Consequence
9145Degraded Comprehension
Default Graph (primary)9001
ParentOf
Is
Issue
9093Invokable Control Element with Signature Containing an Excessive Number of Parameters
Quality Issues Organized by Practices (primary)9002
Page Last Updated or Reviewed: October 01, 2017