SEI CERT Oracle Coding Standard for Java

Space shortcuts

Page tree

Title: SEC02-J. Do not base security checks on untrusted sources  
Author: Dhruv Mohindra Oct 03, 2009
Last Changed by: Michal Rozenau May 18, 2021
Tiny Link: (useful for email) https://wiki.sei.cmu.edu/confluence/x/XTdGBQ
Export As: Word · PDF  
Incoming Links
SEI CERT Oracle Coding Standard for Java (2)
    Page: SEC01-J. Do not allow tainted variables in privileged blocks
    Page: SEC03-J. Do not load trusted classes after allowing untrusted code to load arbitrary classes
Hierarchy
Parent Page
    Page: Rule 15. Platform Security (SEC)
Labels
Global Labels (6)
Recent Changes
Time Editor  
May 18, 2021 08:45 Michal Rozenau View Changes
Parasoft Jtest 2021.1
Feb 26, 2021 09:51 Michal Rozenau View Changes
Parasoft Jtest 2020.2
Nov 21, 2018 14:10 Derek Leung View Changes
Feb 12, 2018 22:02 Will Snavely View Changes
Jan 05, 2017 14:54 Will Snavely  
Outgoing Links
External Links (4)
    cwe.mitre.org/
    cwe.mitre.org/data/definitions/470.html
    www.aitcnet.org/isai/
    cwe.mitre.org/data/definitions/302.html
SEI CERT Oracle Coding Standard for Java (10)     Page: Rule AA. References
    Page: Rule 15. Platform Security (SEC)
    Page: Parasoft
    Page: OBJ06-J. Defensively copy mutable inputs and mutable internal components
    Page: SEC01-J. Do not allow tainted variables in privileged blocks
    Page: SEC03-J. Do not load trusted classes after allowing untrusted code to load arbitrary classes
    Page: Coverity
    Page: Parasoft_V
    Home page: SEI CERT Oracle Coding Standard for Java
    Page: Rule BB. Glossary