Designing secure code
nThree Final Points
nIf you find a security bug fix it and go looking for similar issues in other parts of code
nMake the fix as close as possible to the location of vulnerability
nCure the problem, not the symptoms