Overview
Explore Java vulnerabilities and their critical importance in this 36-minute conference talk from Devoxx. Delve into the world of Java security, understanding key acronyms like NVD, CVE, CVSS, CPU, and PSU. Learn about the expanding attack surface of Java applications and discover essential tools for identifying vulnerabilities in your code. Gain insights into secure software supply chains, DevSecOps practices, and the concept of "Shift Left" in security. Equip yourself with knowledge on free security resources, vulnerability scanners, and Java agents to enhance your application's protection against potential threats.
Syllabus
Introduction
Security in the 21st century
Common Weakness Enumeration
CVEorg
Java updates
Software supply chain
Open source
What can we do
Free Security Box
Vulnerability scanners
Java agents
Sneakcode
SolarCube
Product Pitch
Secure Software Supply Chain
Shift Left
DevSecOps
Security
Taught by
Devoxx