Page History

...

Wiki Markup

\[[API 06|AA. Java References#API 06]\] 
\[[Steel 05|AA. Java References#Steel 05]\] Chapter 10: Securing the Business Tier, Obfuscated Transfer Object
\[[Gong 03|AA. Java References#Gong 03]\] 9.10 Sealing Objects
\[[Harold 99|AA. Java References#Harold 99]\] Chapter 11: Object Serialization, Sealed Objects 
\[[Neward 04|AA. Java References#Neward 04]\] Item 64: Use SignedObject to provide integrity of Serialized objects and Item 65: Use SealedObject to provide confidentiality of Serializable objects
\[[MITRE 09|AA. Java References#MITRE 09]\] [CWE ID 319|http://cwe.mitre.org/data/definitions/319.html] "Cleartext Transmission of Sensitive Information"

...

SEC01SEC15-J. Minimize accessibility of classes and their membersPrefer using SSLSockets over Sockets for secure data exchange 02. Platform Security (SEC) SEC12SEC17-J. Do not grant untrusted code access to classes existing in forbidden packagesCreate and sign a SignedObject before creating a SealedObject

Space shortcuts

Page tree

Versions Compared

Old Version 26

New Version 27

Key