Secure Coding Practices in Java: Challenges and Vulnerabilities

  title={Secure Coding Practices in Java: Challenges and Vulnerabilities},
  author={Na Meng and Stefan Nagy and Danfeng Yao and Wenjie Zhuang and Gustavo Arango Argoty},
  journal={2018 IEEE/ACM 40th International Conference on Software Engineering (ICSE)},
The Java platform and its third-party libraries provide useful features to facilitate secure coding. However, misusing them can cost developers time and effort, as well as introduce security vulnerabilities in software. We conducted an empirical study on StackOverflow posts, aiming to understand developers' concerns on Java secure coding, their programming obstacles, and insecure coding practices. We observed a wide adoption of the authentication and authorization features provided by Spring… CONTINUE READING
This paper has been referenced on Twitter 31 times. VIEW TWEETS


Publications referenced by this paper.