Amazon Web Services' automated code review helps developers find serious security issues in Java and Python applications.

The truth of the matter is, a large number of vulnerabilities exist in production code not because hackers are coming up with new ways to penetrate systems, but because developers and DevOps personnel ...

When building secure Java applications, it's important to make sure there are no plain text passwords anywhere in the code base.

"The CERT Oracle Secure Coding Standard for Java" book covers the rules for secure coding using Java programming language. InfoQ spoke with book authors on how these rules can help Java developers.

Look for vulnerabilities in your code, take advantage of the Java security APIs and packages, and use third-party tools to monitor and log your code for security issues.

As with other aspects of cybersecurity, the level of programming language security depends on what we mean by “secure.” It’s true that Java has fewer identified vulnerabilities than some ...

News Rule of secure coding: 'See input as evil' By Jack Vaughan April 15, 2003 We recently asked security maven Steve Orrin to tell us some of the tenets of secure coding today. While this was once an ...