Overview
Explore secure coding practices for Java SE in this 32-minute video presentation by Chris Ries from Oracle. Delve into the definition and cost of vulnerabilities, learn about security throughout the development process, and examine the Secure Coding Guidelines for Java SE. Discover examples of insecure practices that may lead to security vulnerabilities and how to avoid them by applying the guidelines. Gain insights into recent updates, including expanded guidance on deserialization, exception handling, and error management. Analyze a real-world example using the Log4Shell vulnerability and take away key lessons for implementing secure coding practices in Java development.
Syllabus
Intro
Vulnerabilities - Definition & Cost
Security through the Development Process
Secure Coding Guidelines for Java SE
Real-World Example: Log4Shell
Takeaways
Taught by
Java