Which of the following is NOT a question to ask about what you are assuming about each library function's actions?

Assuming p is a pointer variable, why is the statement "p = malloc(-128);" poor programming?

Which of the following is NOT a question about what users or remote servers will be supplying that is relevant to secure programming?

Which of the following should you AVOID whenever possible?

Which of the following is NOT a language used to state specifications for formal methods?

Which principle of secure design does stepwise refinement follow?

When you write a secure program, the goals must be __________.