Labelled content

This list shows content tagged with the following label:

To add a label to the list of required labels, choose '+ labelname' from Related Labels.

Page:
SEC58-J. Deserialization methods should not perform potentially dangerous operations (SEI CERT Oracle Coding Standard for Java)
Nov 11, 2015 • Will Klieber
- sec
- recommendation
Page:
Rec. 15. Platform Security (SEC) (SEI CERT Oracle Coding Standard for Java)
Mar 05, 2015 • Barbara White
- sec
- recommendation-list
Page:
SEC57-J. Do not let untrusted code misuse privileges of callback methods (SEI CERT Oracle Coding Standard for Java)
May 03, 2013 • Dhruv Mohindra
Page:
SEC55-J. Ensure that security-sensitive methods are called with validated arguments (SEI CERT Oracle Coding Standard for Java)
Apr 14, 2013 • Dhruv Mohindra
Page:
SEC10-J Never permit untrusted code to invoke any API that may (possibly transitively) invoke the reflection APIs (SEI CERT Oracle Coding Standard for Java)
Dec 29, 2010 • Dean Sutherland
Page:
SEC09-J Never leak the results of certain standard API methods from trusted code to untrusted code (SEI CERT Oracle Coding Standard for Java)
Dec 29, 2010 • Dean Sutherland
Page:
SEC08-J Trusted code must discard or clean any arguments provided by untrusted code (SEI CERT Oracle Coding Standard for Java)
Dec 29, 2010 • Dean Sutherland
Page:
SEC51-J. Minimize privileged code (SEI CERT Oracle Coding Standard for Java)
Aug 17, 2010 • Dean Sutherland
Page:
SEC04-J. Protect sensitive operations with security manager checks (SEI CERT Oracle Coding Standard for Java)
Oct 16, 2009 • Dhruv Mohindra
Page:
SEC02-J. Do not base security checks on untrusted sources (SEI CERT Oracle Coding Standard for Java)
Oct 03, 2009 • Dhruv Mohindra