“A must-read for all Java developers. . . . Every developer has a responsibility to author code that is free of significant security vulnerabilities. This book provides realistic guidance to help Java developers implement desired functionality with security, reliability, and maintainability goals in mind.”
–Mary Ann Davidson, Chief Security Officer, Oracle Corporation
Organizations worldwide rely on Java code to perform mission-critical tasks, and therefore that code must be reliable, robust, fast, maintainable, and secure. Java™ Coding Guidelines brings together expert guidelines, recommendations, and code examples to help you meet these demands.
Written by the same team that brought you The CERT® Oracle ® Secure Coding Standard for Java™, this guide extends that previous work’s expert security advice to address many additional quality attributes.
You’ll find 75 guidelines, each presented consistently and intuitively. For each guideline, conformance requirements are specified; for most, noncompliant code examples and compliant solutions are also offered. The authors explain when to apply each guideline and provide references to even more detailed information.
Reflecting pioneering research on Java security, Java™ Coding Guidelines offers updated techniques for protecting against both deliberate attacks and other unexpected events. You’ll find best practices for improving code reliability and clarity, and a full chapter exposing common misunderstandings that lead to suboptimal code.
With a Foreword by James A. Gosling, Father of the Java Programming Language
The quality of Java code is more critical than ever. That code, relied upon for mission-critical functions by organizations worldwide, must be reliable, safe, robust, fast, and maintainable - and, as recent events have demonstrated, it must especially be secure. Now, Java Coding Guidelines brings together workable guidelines and sample code for ensuring that all your Java software meets these requirements.
Authored by the same SEI/CERT team that previously wrote The CERT Oracle Secure Coding Standard for Java, this guide extends its predecessor's expert security advice to reflect a wide range of additional quality attributes. Approximately 75 specific guidelines are presented, each following a consistent, intuitive structure, including conformance requirements, typically followed by noncompliant code examples and corresponding compliant solutions.
The authors explain when each guideline should be applied, and present bibliographical references offering more detailed information. Targeted primarily at developers working in Java Standard Edition (SE) 7 Platform environments, this guide will also be useful to developers working with Java Micro Edition (ME), Java Enterprise Edition (EE), and other contemporary Java language platforms.