heise online

Secure Coding: Introduction to secure programming practices for Java

The new series of articles "Secure Coding" provides a comprehensive guide to secure programming practices – specifically tailored to Java developers. In today's digital landscape, security is more ...
InfoQ

Interview and Book Review: The CERT Oracle Secure Coding Standard for Java

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Vivek Yadav, an engineering manager from ...
heise online

Secure Coding: Best practices for using Java NIO against path traversal

The article Secure Coding: Preventing unauthorized access through path traversal (CWE-22) has already described the dangers posed by the critical vulnerability CWE-22 (path traversal) in software ...
Dark Reading

Java Coding Guidelines: Now Available Free Online

October 1, 2014—While conducting the research that produced The CERT® Oracle® Coding Standard for Java, the Secure Coding Team in the CERT Division of the Software Engineering Institute at Carnegie ...
InfoWorld

Thirteen rules for developing secure Java applications

Make Java security a top priority at every stage of application development, from class-level language features to API endpoint authorization Security is one of the most complex, broad, and important ...
InfoWorld

Secure your Java apps from end to end, Part 1

Nobody was ever fired for writing insecure code. My slightly reworked version of the popular adage, “Nobody was ever fired for buying IBM,” while not exactly true is accurate enough to be alarming.
TheServerSide

How to remove plain text passwords for a secure Java code base

One of the most common problems identified by static code analysis tools is the presence of plain text passwords written directly into configuration files. It's ...