...
| Wiki Markup |
|---|
The CERT Oracle Secure Coding Standard for Java focuses on the Java 2 SE 6 Platform environment and includes guidelines that address the issue of secure coding using the Java SE 6 API. The Java Language Specification (3rd edition) \[[JLS 2005|AA. Bibliography#JLS 05]\] prescribes the behavior of the Java programming language and serves as the primary reference for the development of this standard. |
...
This secure coding standard addresses security issues primarily applicable to the lang and util Base Libraries, . Selective advice is also provided for Other Base Libraries as well as the Integration Libraries. This standard avoids the inclusion of open bugs that have already been marked to be fixed or those that do not have any security ramifications. A functional bug is only included if it is likely that it occurs with high frequency, causes considerable security concerns or affects most Java technologies that rely on the core platform. This standard is not limited to security issues specific to the Core API but also includes important security concerns pertaining to the standard extension APIs (javax package).
...