Path: csiph.com!x330-a1.tempe.blueboxinc.net!usenet.pasdenom.info!aioe.org!eternal-september.org!feeder.eternal-september.org!.POSTED!not-for-mail From: Jeff Higgins Newsgroups: comp.lang.java.programmer Subject: Re: The CERT Oracle Secure Coding Standard for Java Date: Fri, 27 May 2011 18:43:18 -0400 Organization: A noiseless patient Spider Lines: 25 Message-ID: References: <899ac5cb-b1e4-44b1-8e27-e6385b4fdcdb@24g2000yqk.googlegroups.com> Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Injection-Date: Fri, 27 May 2011 22:39:49 +0000 (UTC) Injection-Info: mx04.eternal-september.org; posting-host="66+B4XK2fUYI7mQKoMaOgA"; logging-data="402"; mail-complaints-to="abuse@eternal-september.org"; posting-account="U2FsdGVkX1+RU3ZcStmgtQ5WCGoB1Bs9yaX1jdvO5H0=" User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.2.17) Gecko/20110414 Thunderbird/3.1.10 In-Reply-To: <899ac5cb-b1e4-44b1-8e27-e6385b4fdcdb@24g2000yqk.googlegroups.com> Cancel-Lock: sha1:i1xPWTjdc7KseyaPLx/x0Ic1igQ= Xref: x330-a1.tempe.blueboxinc.net comp.lang.java.programmer:4663 On 05/27/2011 01:44 PM, rCs wrote: > The CERT Oracle Secure Coding Standard for Java has been completed and > is now ready for https://www.securecoding.cert.org/confluence/display/java/The+CERT+Oracle+Secure+Coding+Standard+for+Java. > > The CERT Oracle Secure Coding Standard for Java provides rules for > secure coding in the Java programming language. The goal of these > rules is to eliminate insecure coding practices that can lead to > exploitable vulnerabilities. > > To review, you can create an account on the wiki and then post > comments to any of the pages, or respond directly to me. > > Thanks, > rCs Thanks for the link. Spotted a typo, third paragraph IDS01-J "Character information in Java 1.6 is based on the Unicode Standard, version 4.0 [Unicode 2003]. Character information in Java 1.6 is based on the Unicode Standard, version 6.0.0 [Unicode 2011]."