October 1, 2014—While conducting the research that produced The CERT® Oracle® Coding Standard for Java, the Secure Coding Team in the CERT Division of the Software Engineering Institute at ...

A common software antipattern is to log and rethrow exceptions in Java. Here we explain why doing so will make troubleshooting errors harder.

Look for vulnerabilities in your code, take advantage of the Java security APIs and packages, and use third-party tools to monitor and log your code for security issues.

A group of secure-programming experts plans a series of documents that outline the skills coders need to write Web applications that are better able to withstand attacks.

When building secure Java applications, it's important to make sure there are no plain text passwords anywhere in the code base.

New research from software security specialist Fortify reveals that bugs are far less common in Java compared with commercial C/C++ code ...