CERT Oracle Secure Coding Standard for Java, The (SEI Series in Software Enginee

CERT Oracle Secure Coding Standard for Java, The (SEI Series in Software Enginee eBook cover

eBook Description

An essential element of secure coding in the Java programming language is a well-documented and enforceable coding standard. Coding standards encourage programmers to follow a uniform set of rules determined by the requirements of the project and organization, rather than by the programmer’s familiarity or preference. Once established, these standards can be used as a metric to evaluate source code (using manual or automated processes).
The CERT® Oracle® Secure Coding Standard for Java™ provides rules designed to eliminate insecure coding practices that can lead to exploitable vulnerabilities. Application of the standard’s guidelines will lead to higher-quality systems–robust systems that are more resistant to attack. Such guidelines are required for the wide range of products coded in Java–for devices such as PCs, game players, mobile phones, home appliances, and automotive electronics.
After a high-level introduction to Java application security, seventeen consistently organized chapters detail specific rules for key areas of Java development. For each area, the authors present noncompliant examples and corresponding compliant solutions, show how to assess risk, and offer references for further information. Each rule is prioritized based on the severity of consequences, likelihood of introducing exploitable vulnerabilities, and cost of remediation.
The standard provides secure coding rules for the Java SE 6 Platform including the Java programming language and libraries, and also addresses new features of the Java SE 7 Platform. It describes language behaviors left to the discretion of JVM and compiler implementers, guides developers in the proper use of Java’s APIs and security architecture, and considers security concerns pertaining to standard extension APIs (from the javax package hierarchy).The standard covers security issues applicable to these libraries: lang, util, Collections, Concurrency Utilities, Logging, Management, Reflection, Regular Expressions, Zip, I/O, JMX, JNI, Math, Serialization, and JAXP.

    There are no reviews yet.

    Be the first to review “CERT Oracle Secure Coding Standard for Java, The (SEI Series in Software Enginee”

    Your email address will not be published. Required fields are marked *


    eBook Description

    An essential element of secure coding in the Java programming language is a well-documented and enforceable coding standard. Coding standards encourage programmers to follow a uniform set of rules determined by the requirements of the project and organization, rather than by the programmer’s familiarity or preference. Once established, these standards can be used as a metric to evaluate source code (using manual or automated processes).
    The CERT® Oracle® Secure Coding Standard for Java™ provides rules designed to eliminate insecure coding practices that can lead to exploitable vulnerabilities. Application of the standard’s guidelines will lead to higher-quality systems–robust systems that are more resistant to attack. Such guidelines are required for the wide range of products coded in Java–for devices such as PCs, game players, mobile phones, home appliances, and automotive electronics.
    After a high-level introduction to Java application security, seventeen consistently organized chapters detail specific rules for key areas of Java development. For each area, the authors present noncompliant examples and corresponding compliant solutions, show how to assess risk, and offer references for further information. Each rule is prioritized based on the severity of consequences, likelihood of introducing exploitable vulnerabilities, and cost of remediation.
    The standard provides secure coding rules for the Java SE 6 Platform including the Java programming language and libraries, and also addresses new features of the Java SE 7 Platform. It describes language behaviors left to the discretion of JVM and compiler implementers, guides developers in the proper use of Java’s APIs and security architecture, and considers security concerns pertaining to standard extension APIs (from the javax package hierarchy).The standard covers security issues applicable to these libraries: lang, util, Collections, Concurrency Utilities, Logging, Management, Reflection, Regular Expressions, Zip, I/O, JMX, JNI, Math, Serialization, and JAXP.

      Research Methods for the Behavioral Sciences 6th Edition , eBook cover
      Sale!

      Research Methods for the Behavioral Sciences 6th Edition ,

      $69.90$35.90
      Add to cart
      CompTIA Security+ Guide to Network Security Fundamentals-Standalone Book 6th Edi eBook cover
      Sale!

      CompTIA Security+ Guide to Network Security Fundamentals-Standalone Book 6th Edi

      $99.98$49.99
      Add to cart
      Design and Analysis of Experiments with R 1st Edition ByJhon Lawson eBook cover
      Sale!

      Design and Analysis of Experiments with R 1st Edition ByJhon Lawson

      $49.26$36.95
      Add to cart
      Greek Art and Archaeology 2nd Edition By Richard T. Neer 9780500052099 eBook cover
      Sale!

      Greek Art and Archaeology 2nd Edition 9780500052099

      $79.98$39.99
      Add to cart
      Stoelting's Anesthesia and Co-Existing Disease 7th Edition 9780323401371 eBook cover
      Sale!

      Stoelting’s Anesthesia and Co-Existing Disease 7th Edition 9780323401371

      $103.98$51.99
      Add to cart
      Principles of Macroeconomics 8th Edition eBook cover
      Sale!

      Principles of Macroeconomics 8th Edition

      $99.98$49.99
      Add to cart

      FAQ

      How long does it take to receive my ebook order?

      You’ll have instant access to your ebook after completing your purchase. Download it directly from the “Downloads” page on Your Account or check your email for a download link. If you did not receive it, kindly reach out to us via the Live Chat.

      Can I Re-download the Books?

      Sure, just log in and navigate to “Your Account” > “Downloads” to easily view your past orders.

      Can I get a Refund?

      Mistakes happen, and we get it! If you encounter a genuine issue with your order, we’re happy to offer a refund. Whether it’s our mistake or an unforeseen problem, we’ll strive to make it right. Kindly check our Return and Refund Policy for more details.

      Is this eBook a permanent purchase or a rental?

      Enjoy your eBook across your devices, but please respect copyright by keeping it private.

      Missing your download link? We’ve got you covered!

      If you can’t locate your download link, simply contact us through email or our 24/7 chat support. Our friendly team will be happy to:

      • Verify your purchase: We’ll confirm your order and identify any potential issues.
      • Resend the download link: You’ll receive a fresh link directly to your inbox or chat window.
      • Troubleshoot other concerns: Our support team is available to assist with any download-related problems you might encounter.
      Can’t find the eBook you want?

      No problem! Just let us know. Use the “Ebook Request” tab or live chat, and we’ll try our best to find it for you.

      Purchase eBook

      eBook Details

      • Categories: Computers – Computer Certification & Training
      • Year: 2011
      • Edition: 1
      • Publisher: Addison-Wesley Professional
      • Language: English
      • Pages: 738
      • ISBN 10: 0321803957
      • ISBN 13: 9780321803955
      • File: PDF, 3.92 MB