The following rules and guidelines are specific only to the Android platform. These do not apply to the development of Java or C programs for non-Android platforms. (The full set of Android -relevant rules and guidelines are here.) The term sensitive incorporates the Java glossary definition of sensitive data, as well as the Android concept of permission-protected.
Risk Assessment Summary
Rule | Severity | Likelihood | Remediation Cost | Priority | Level |
|---|---|---|---|---|---|
DRD00-J | medium | probable | medium | P12 | L1 |
DRD01-J | medium | probable | low | P18 | L1 |
DRD02-J | medium | probable | high | P6 | L2 |
DRD03-J | Medium | Probable | Medium | P8 | L2 |
DRD04-J | Medium | Probable | Medium | P8 | L2 |
DRD05-J | High | Probable | Medium | P12 | L1 |
DRD06-J | High | Probable | Medium | P12 | L1 |
DRD07-J | High | Probable | Medium | P12 | L1 |
DRD08-J | High | Probable | Low | P18 | L1 |
DRD09-J | High | Probable | Medium | P12 | L1 |
DRD10-J | High | Probable | Low | P18 | L1 |
DRD11-J | High | Probable | Medium | P12 | L1 |
DRD12-J | High | Probable | Medium | P12 | L1 |
DRD13-J | High | Probable | Medium | P12 | L1 |
DRD14-J | High | Probable | Medium | P12 | L1 |
DRD15-J | Low | Probable | Medium | P4 | L3 |
DRD16-J | Medium | Probable | Medium | P8 | L2 |
DRD17-J | High | Likely | Medium | P18 | L1 |
DRD18-J | High | Likely | Medium | P18 | L1 |
DRD19-J | High | Probable | Medium | P12 | L1 |
DRD20-J | High | Probable | Medium | P12 | L1 |
DRD21-J | Medium | Probable | Medium | P8 | L2 |
DRD22-J | Medium | Probable | High | P4 | L3 |
DRD23-J | Medium | Probable | Medium | P8 | L2 |
| DRD24-J | Medium | Probable | |||
| DRD25-J | Medium | Probable | |||
| DRD26-J |
ENV05-J. Do not deploy an application that can be remotely monitored CERT Oracle Coding Standard for Java MSC00-J. Use SSLSocket rather than Socket for secure data exchange