Don't Be Pwned: A Very Short Course on Secure Programming in Java

Abstract

Many of The CERT Oracle Secure Coding Standard for Java and the Java Coding Guidelines address real exploits that have compromised Java programs in the field. This presentation: examines several examples that describe the core vulnerability exploited; presents techniques for avoiding or repairing the vulnerability (including code examples).

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jan 01, 2013
Accession Number
AD1180380

Entities

People

  • David Svoboda
  • Dean F. Sutherland
  • Robert Seacord

Organizations

  • Carnegie Mellon University

Tags

Communities of Interest

  • Cyber

DTIC Thesaurus Topics

  • Boundaries
  • Command Injection
  • Computer Programming
  • Computer Programs
  • Computer Science
  • Computers
  • Confluence
  • Department Of Defense
  • Engineering
  • Intellectual Property
  • Language
  • Materials
  • Networks
  • Precision
  • Reflection
  • Security
  • Software Development
  • Standards
  • Universities
  • Vulnerability
  • Web Applications

Fields of Study

  • Computer science

Readers

  • Computer Science.
  • Cybersecurity.