Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: removed some stuff. i'm going to remove the deleteme label in case there are still some good ideas here.

Current status.

Dhruv – ???

Dean – chapter 2

Robert – ???

Fred - chapter 1

David - chapter 4

Completed

Chapter 1:  rCs, dm

Chapter 2: dm

Chapter 3:  rCs

Chapter4:  dm

Replaceable (weak) guidelines

Content by Label
labelsweak

 

 

 

 

This page contains adhoc TODO ideas or topics being currently investigated. Please feel free to comment on these or suggest new ones.

Possible Changes to Current Guidelines
  • All classes, methods will need to include the final keyword. Although this is against extensibility, it is critical from the security point of view.

...

  • Calling clone.super() is necessary.

...

Possible Recommendations
  • Do not serialize keys, certificates or the classes that contain their instances, as deserialization may fail if the same security provider is not present at the remote end. Instead, override the readObject, writeObject methods and encode the data. [P 202 Oaks 01] (unsure if this can be classified as a security error) (done)

...

  • Issues with ProtectionDomains (if any)

...

Possible Rules
  • Poor performance and DoS due to regex (fixed in jdk 1.6)

...