...
Search for vulnerabilities resulting from the violation of this rule on the CERT website.
Bibliography
<ac:structured-macro ac:name="unmigrated-wiki-markup |
...
" ac:schema-version="1" ac:macro-id="f339edf5-5f2e-4eae-8989-a3ffefa4c1af"><ac:plain-text-body><![CDATA[ | [[Long |
...
2005 |
...
AA. |
...
Bibliography#Long |
...
05] |
...
] |
...
Section |
...
2.4, |
...
Serialization | ]]></ac:plain-text-body></ac:structured-macro> | |||
<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="fe3e8ab1-c461-419b-9289-dbbdb397f3a0"><ac:plain-text-body><![CDATA[ | [[SCG 2007 | AA. Bibliography#SCG 07]] | Guideline 5-3 Duplicate the SecurityManager checks enforced in a class during serialization and deserialization | ]]></ac:plain-text-body></ac:structured-macro> |
...
SER03-J. Prevent serialization of unencrypted, sensitive data 16. Serialization (SER) SER06-J. Do not serialize instances of inner classes