Java Security

Java Security

Old Java versions breed new security exploits
You may be tempted to keep various versions of Java running on your systems, but doing so leaves you exposed to security threats.
Roger A. Grimes , November 2011

Java 7: What's in it for developers
After a long wait and a rough start, Java 7 brings a multitude of improvements for developers.
Paul Krill, August 2011

Study finds Android app-makers careless with some data
Researchers found 'widespread misuse' of data that should be kept private.
Robert McMillan, August 2011

It's time to make poor coding a felony
Code that compromises millions of user accounts is unconscionable and should be a felony offence.
Paul Venezia, July 2011

Big firms shunning public cloud storage
When it comes to turning their data over to an external service, large corporations are worried about security and performance.
Lucas Mearian, May 2011

Twitter permissions changes frustrate developers
Twitter's new permission model gives users fine-grained control over third-party application access permissions. Developers may scramble to adopt the new protocol, however.
Lex Friedman, May 2011

Java and security skills offer IT job security
For those who wondered whether Java had a future now that it's under the Oracle umbrella, fret no more. A recent survey by job-hunting site Dice.com found that the people who are hiring IT pros put Java/J2EE at the very top of their hiring criteria.
Lisa Schmeiser, July 2010

Java, BlackBerry get critical security fixes
Sun Microsystems and Research In Motion have issued critical bug fixes for security issues with their products.
Robert McMillan , November 2009

Lamport's one-time password algorithm (or, don't talk to complete strangers!)
The Lamport algorithm provides an elegant scheme for generating and applying one-time passwords, or OTP. Find out how Lamport works, then see it in action with an OTP reference implementation for an extensible, Java-based library.
Louis J. Iacona, March 2009

Security flaw in G1 Google phone
Researchers at Independent Security Evaluators say they've discovered a security flaw in the Android browser that could leave users vulnerable to attack.
Nancy Gohring, October 2008

J2ME breach infects Nokia phones
Researcher Adam Gowdiak has released some of his findings regarding a J2ME security breach that could render Nokia Series 40 phone users vulnerable to attack. Further details, he says, will come at a price.
Gregg Keizer, August 2008

Study: Web sites, open source, social networking at risk
Security trend reports from IBM and Websense show SQL injection and cross-ste scripting attacks hitting open source and social networking projects in '08. List includes Drupal, WordPress, and Linux.
Ellen Messmer , July 2008

Acegi security for JSF applications
Use the Spring application context to configure Acegi's authentication and authorization services for your JSF applications.
Seema Richard, April 2008

Agility meets the Waterfall
You've got an agile mind stuck in a traditional shop? No problem! There are plenty of ways to fit automated builds, continuous integration, and test automation into Waterfall-based development.
ShriKant Vashishtha , March 2008

Client-side WSDL processing with Groovy and Gant
The Groovy and Gant Toolset lets you automatically generate Java Web service clients with Axis2, XFire, CXF, and Java 6 -- including WSDL compatibility checks.
Klaus P. Berg, November 2007

Find more >