I have been asked by my IT department how a LabVIEW application is secure

In general how does a standard LabVIEW application respond to these requirements:
The runtime environment shall not be susceptible to buffer overflows, SQL injection, LDAP and XPath injection, code injection or any other injection flaws. Malicious file execution and insecure direct object references shall be prevented at all times. 

I know certain ActiveX actions that are deemed "security risks" will now generate errors in the LabVIEW Run Time Engine unless the registry of the host computer has been specifically modified to allow such ActiveX calls.
I guess my point is, NI does take some steps to prevent some issues at the run-time level regardless of how your code is written, so if that is the level <they> are concerned about, I would reach out to my local NI Field engineer and/or NI Customer Support and ask for help in how to answer <them>.
As Sam_Sharp pointed out, there are several things that are difficult/impossible for the RunTimeEngine to protect against, in any language.  If the author of the code does stupid things or deliberately has maliscious intent, there are many things they can do that is outside the bounds of an RTE.   In LabVIEW, some of the 'holes' in other languages are hard (impossible??) to do.  For example, you as a coder, do not have access to creating and manipulating pointers, so you can't create code that intentionally overwrites other [edit: memory-]sectors in the host machine memory.  So that would also be a case of where the run-time-engine (and its memory manager) plugs (or significantly shores up) things and makes it "safer".
The main security threats I see coming from the LV RTE engine is that there is no way the RTE can protect against malicious file removals, file hashing, injecting bad commands and/or data into network(s) and databases etc., beyond the protection offered by the OS (file/folder permissions) and IT infrastructure (firewalls, database query protections etc.).
Not sure any of that helps you out or not.. A dialoge with NI seems required for you, perhaps bring together reps' from both parties (NI field engineer and your IT people) so that they can get a line of communication going.
QFang
CLD LabVIEW 7.1 to 2013

Similar Messages

Maybe you are looking for

  • Page orientation - In Design CC

    How do I add the odd landscape page into an In Design document which is mainly portrait? Any help would be appreciated.

  • Media Issues in Interactive PDF

    I have inserted two video clips and two audio clips onto a page in a document I'm work on and they are giving me a lot of trouble.  For some reason when I export the project as an swf, when I click the video files to play them they move up about a 1/

  • Problems with abc video podcast

    I'm not sure what's causing this but none of the Abc news video podcast will play in iTunes on my Mac (10.4.4). If I load the files in Mplayer they work, with a bit of grey pixels here and there. The podcasts works just fine in iTunes on a windows ma

  • The radio changes stations on its own

    The radio just changes stations by itself - it is irritating...i'm trying to study to nice, mellow music and all the sudden I get celtic fling music.....which is fine if I'm drinking a guiness, not so good if I'm trying to concentrate!

  • Folio producer requesting an 29.0.0 update but the available in only 28.0.0

    Hi All ... i have a serios issue with this we are developing an app and the client need to see the update and we can do any thing for the past 24 houers, any solution please ?