SEI CERT Oracle Coding Standard for Java

Space shortcuts

Page tree

Title: SER02-J. Sign then seal objects before sending them outside a trust boundary  
Author: Dhruv Mohindra Jan 16, 2009
Last Changed by: Jon O'Donnell Aug 06, 2021
Tiny Link: (useful for email) https://wiki.sei.cmu.edu/confluence/x/cDdGBQ
Export As: Word · PDF  
Incoming Links
SEI CERT Oracle Coding Standard for Java (3)
    Page: SER03-J. Do not serialize unencrypted sensitive data
    Page: SER12-J. Prevent deserialization of untrusted data
    Page: MSC00-J. Use SSLSocket rather than Socket for secure data exchange
Hierarchy
Parent Page
    Page: Rule 14. Serialization (SER)
Labels
Global Labels (7)
Recent Changes
Time Editor  
Aug 06, 2021 09:29 Jon O'Donnell View Changes
Sep 16, 2016 13:09 David Svoboda View Changes
Sep 16, 2016 12:57 David Svoboda View Changes
intro wordsmithing
Sep 15, 2016 20:19 David Svoboda View Changes
Feb 02, 2016 14:51 Sandy Shrum  
Outgoing Links
External Links (2)
    cwe.mitre.org/
    cwe.mitre.org/data/definitions/319.html
SEI CERT Oracle Coding Standard for Java (7)     Page: SER01-J. Do not deviate from the proper signatures of serialization methods
    Page: Rule BB. Glossary
    Page: Rule 14. Serialization (SER)
    Page: Rule AA. References
    Page: CodeSonar_V
    Home page: SEI CERT Oracle Coding Standard for Java
    Page: SER03-J. Do not serialize unencrypted sensitive data
SEI CERT C Coding Standard (1)     Page: CodeSonar