"The CERT Oracle Secure Coding Standard for Java" book covers the rules for secure coding using Java programming language. InfoQ spoke with book authors on how these rules can help Java developers.

A group of secure-programming experts plans a series of documents that outline the skills coders need to write Web applications that are better able to withstand attacks.

Although secure coding practices are widely available, developers still frequently make security mistakes. The more developers that know about threat aversion, the more likely it is that the ...

Faced with an onslaught of malware attacks that leverage vulnerabilities and design weaknesses in Java, Oracle Corp. recently tweaked things so that Java now warns users about the security risks ...

Secure coding: Prevent unauthorized access through path traversal (CWE-22) CWE-22 describes the improper modification of a path name to a restricted directory. How can the vulnerability be addressed?

The features of Java this torrent computer-speak jargon has often been labeled the "Oop" and was doubtless intended with tongue in cheek, it nevertheless ...

New Java Zero-day Flaws uncovered by Security Explorations, a Poland-based vulnerability research firm, can be used by an attacker to execute code on a victim's computer.

Yet another Java flaw allows “complete” bypass of security sandbox Flaw in last three Java versions, 8 years worth, puts a billion users at risk.

Java vs. Javascript: The Java 7 security flaw does not affect JavaScript. While they're both programming languages, they're not as closely related as their names imply.