Issue No.01 - January/February (2008 vol.25)
Charlie Lai , Sun Microsystems
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MS.2008.9
Java developers commonly follow numerous coding guidelines—such as minimizing accessibility, creating copies of mutable inputs, and preventing the unauthorized construction of sensitive classes—to ensure that their programs are safe. Various subtleties related to each guideline could lead to unexpected behavior, and ultimately to security vulnerabilities. Java developers can safely account for these subtleties to prevent attacks. This article is part of a special issue on Security for the Rest of Us.
Java, code design, programming paradigms, security and privacy protection
Charlie Lai, "Java Insecurity: Accounting for Subtleties That Can Compromise Code", IEEE Software, vol.25, no. 1, pp. 13-19, January/February 2008, doi:10.1109/MS.2008.9