The CERT Oracle Secure Coding Standard for Java is primarily intended for developers of Java language programs. While this standard focuses on the Java Standard Edition (SE) 6 Platform environment, it should also be informative (although incomplete) for Java developers working with Java Micro Edition (ME) or Java Enterprise Edition (EE) and other Java language versions.
While primarily designed for secure systems, this standard is also useful for achieving other quality attributes such as safety, reliability, dependability, robustness, availability, and maintainability.
This standard may also be used by
- developers of analyzer tools that wish to diagnose insecure or nonconforming Java language programs.
- software development managers, software acquirers, or other software development and acquisition specialists to establish a proscriptive set of secure coding standards.
- educators as a primary or secondary text for software security courses that teach secure coding in Java.