You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 29 Next »

The following rules and guidelines are specific only to the Android platform. These do not apply to the development of Java or C programs for non-Android platforms. (The full set of Android -relevant rules and guidelines are here.) The term sensitive incorporates the Java glossary definition of sensitive data, as well as the Android concept of permission-protected.

Risk Assessment Summary

Rule

Severity

Likelihood

Remediation Cost

Priority

Level

DRD00-J

high

probable

medium

P12

L1

DRD01-J

high

probable

low

P18

L1

DRD02-J

high

probable

high

P6

L2

DRD03-J

High

Probable

Medium

P12

L1

DRD04-J

High

Probable

Medium

P12

L1

DRD05-J

High

Probable

Medium

P12

L1

DRD06-J

High

Probable

Medium

P12

L1

DRD07-J

High

Probable

Medium

P12

L1

DRD08-J

High

Probable

Low

P18

L1

DRD09-JHighProbableMedium

P12

L1

DRD10-J

High

Probable

Low

P18

L1

DRD11-J

High

Probable

Medium

P12

L1

DRD12-J

High

Probable

Medium

P12

L1

DRD13-J

High

Probable

Medium

P12

L1

DRD14-J

High

Probable

Medium

P12

L1

DRD15-J

low

probable

medium

P6

L2

DRD16-J

Medium

Probable

Medium

P8

L2

DRD17-J

High

Likely

Medium

P18

L1

DRD18-J

High

Likely

Medium

P18

L1

DRD19-J

high

probable

medium

P12

L1

ENV05-J. Do not deploy an application that can be remotely monitored      The CERT Oracle Secure Coding Standard for Java      MSC00-J. Use SSLSocket rather than Socket for secure data exchange

 

 

  • No labels