InfoWorld

Standards suggested for writing secure Java

A group of secure-programming experts plans a series of documents that outline the skills coders need to write Web applications that are better able to withstand attacks. The first of these is being ...
InfoQ

Interview and Book Review: The CERT Oracle Secure Coding Standard for Java

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Ramya Krishnamoorthy shares a detailed case ...
InfoWorld

Thirteen rules for developing secure Java applications

Make Java security a top priority at every stage of application development, from class-level language features to API endpoint authorization Security is one of the most complex, broad, and important ...
heise online

Secure coding: Prevent unauthorized access through path traversal (CWE-22)

Common Weakness Enumeration CWE-22, commonly referred to as "path traversal", is a vulnerability in which an application does not appropriately restrict the paths that users can access via ...
adtmag.com

Rule of secure coding: 'See input as evil'

We recently asked security maven Steve Orrin to tell us some of the tenets of secure coding today. While this was once an administrator's main look-see, it has become part of the developer's job in ...
TheServerSide

Implementing cloud-native security means going back to your secure coding basics

Community driven content discussing all aspects of software development from DevOps to design patterns. There’s really nothing new under the sun when it comes to addressing security vulnerabilities in ...
Business Wire

AI-Generated Code Poses Major Security Risks in Nearly Half of All Development Tasks, Veracode Research Reveals

BURLINGTON, Mass.--(BUSINESS WIRE)--Veracode, a global leader in application risk management, today unveiled its 2025 GenAI Code Security Report, revealing critical security flaws in AI-generated code ...