Software Engineering Institute

In this session, the authors of the CERT Oracle Secure Coding Standard for Java describe how it can be used to secure your Java projects. They examine the dos and don’ts of several secure coding rules, focusing on rule violations that have resulted in real-world vulnerabilities in fielded systems. They also discuss how conformance to the coding standard can be enforced through static analysis and the Source Code Analysis Lab (SCALe).