How to prevent cryptographic pitfalls by design

Many security vulnerabilities are based on mistakes in integrating cryptographic mechanisms into the application. We argue that this is due to the design of the API of cryptographic libraries, which requires knowledge about cryptographic mechanisms and how to correctly embed them into specific use cases. We discuss how a few simple and well-known programming techniques can be utilized to make cryptographic APIs more usable for application developers and introduce a free software library which integrates cryptographic functions using an easier API in order to avoid common pitfalls.

Source: fosdem.org