https://wiki.owasp.org/index.php?action=history&feed=atom&title=Java_overviewJava overview - Revision history2026-05-27T08:02:27ZRevision history for this page on the wikiMediaWiki 1.27.2https://wiki.owasp.org/index.php?title=Java_overview&diff=16452&oldid=prevThesp0nge at 10:16, 13 February 20072007-02-13T10:16:26Z<p></p>
<p><b>New page</b></p><div>Stating from [http://en.wikipedia.org/wiki/Java_%28programming_language%29 wikipedia], Java is an object oriented programming language developed by Sun in the early 1990s with the aim to be portable and cross compatible.<br />
<br />
Looking at the security point of view, Java is a big step ahead from C programming language:<br />
<ul><br />
<li>automatic garbage collector: Java virtual machine use an automatic garbage collector to free unused or unreferenced previously allocated memory regions. This approach solves the annoying problem that afflict many C source codes and their poor memory management, not enforced however by the programming language itself</li><br />
<li>hardening against buffer overflow, thanks to language design you can't stuff in a String object more items than it is able to contain</li><br />
<li>hardening against off-by-one buffer overflow, thanks to a better language expressiveness (an array length is a public attribute of the array itself and Vector objects give public method size() to check for</li> <br />
</ul><br />
<br />
Big step ahead but security is a real concern also in the Java world.<br />
<br />
Let's see some best practices about writing, or trying to write a more secured java code. <br />
<br />
First of all a big truth: 100% safe code doesn't exists. Our goal is to provide as much as possible ways to harden it and make it stronger.</div>Thesp0nge