--- product_id: 87077217 title: "The CERT Oracle Secure Coding Standard for Java, 1e" brand: "long" price: "£3.22" currency: GBP in_stock: true reviews_count: 5 url: https://www.desertcart.co.uk/products/87077217-the-cert-oracle-secure-coding-standard-for-java-1e store_origin: GB region: United Kingdom --- # The CERT Oracle Secure Coding Standard for Java, 1e **Brand:** long **Price:** £3.22 **Availability:** ✅ In Stock ## Quick Answers - **What is this?** The CERT Oracle Secure Coding Standard for Java, 1e by long - **How much does it cost?** £3.22 with free shipping - **Is it available?** Yes, in stock and ready to ship - **Where can I buy it?** [www.desertcart.co.uk](https://www.desertcart.co.uk/products/87077217-the-cert-oracle-secure-coding-standard-for-java-1e) ## Best For - long enthusiasts ## Why This Product - Trusted long brand quality - Free international shipping included - Worldwide delivery with tracking - 15-day hassle-free returns ## Description The CERT Oracle Secure Coding Standard for Java, 1e ## Images ![The CERT Oracle Secure Coding Standard for Java, 1e - Image 1](https://m.media-amazon.com/images/I/31Hq1MEnrhL.jpg) ## Customer Reviews ### ⭐⭐⭐⭐⭐ Excellent book *by M***I on Reviewed in the United Kingdom on 15 March 2015* A must read ### ⭐⭐⭐⭐ Does what is says on the cover *by M***G on Reviewed in the United Kingdom on 8 April 2015* Massive detail, a little dull but that's the nature of the subject :) ### ⭐⭐⭐⭐ Good resoure for Java architects, developers, and application security auditors *by J***B on Reviewed in the United States on 4 April 2012* "The CERT Oracle Secure Coding Standard for Java" is a thoroughly researched and authoritative guide to secure coding in Java. It specifically focuses on Java SE 6 and some of the features of Java SE 7, so don't look for coverage of security best practices for Java EE and certainly not for web application security issues that target aspects of HTTP, HTML, or JavaScript (e.g., Cross-Site Scripting, Cross-Site Request Forgery, etc.). The book actually goes beyond guidance for coding a secure application, providing insight into building a solid, high quality application. Indeed, in the Preface it notes that the goal of the rules is to help developers build "higher quality systems that are safe, secure, reliable, dependable, robust, resilient, available, and maintainable".The coding standards are provided as a clearly documented set of rules, each one including some summary information about the rule, code examples of the rule not being followed as well as code that does follow the rule, enumerated exceptions where it's permissible to deviate from the rule, and lastly a risk assessment of the vulnerability that arises when you don't follow the rule. The list of rules is extensive, so the authors have helpfully grouped them into the following categories:* Input Validation and Data Sanitization* Declarations and Initialization* Expressions* Numeric Types and Operations* Object Orientation* Methods* Exceptional Behavior (i.e., proper usage and handling of exceptions)* Visibility and Atomicity* Locking* Thread APIs* Thread Pools* Thread-Safety Miscellaneous* Input Output* Serialization* Platform Security* Runtime Environment* MiscellaneousThis presentation format lends itself to a very organized and comprehensive treatment of the subject, but doesn't make it the type of book that you can easily read from cover to cover. It would be fair to say that it reads more like a reference book that's tremendously useful when you're interested in practical secure Java coding practices for a specific area rather than as a training guide. Before finding that specific topic of interest, however, it would be wise to read the excellent introductory chapter. The introduction provides overviews of each of the principle sources of vulnerabilities in Java applications: misplaced trust; injection attacks (including a very helpful explanation of the appropriate use and sequencing of validation, sanitization, canonicalization, and normalization); leaking sensitive data; leaking capabilities; denial of service; serialization; concurrency, visibility, and memory; security managers; and class loaders.It's also important to note that many of the rules focus on how to write mobile code that can be safely executed in untrusted systems or how to use untrusted mobile code on trusted systems. In these cases, the attacker is writing code that interacts with your code and takes advantage of vulnerabilities you have left by not following the prescribed rules. This attacker context is quite different from that of an external hacker trying to take advantage of flaws in a web site, for example.Although the book is probably best used as a reference guide in which you'll seek out a topic of interest rather than read from front to back, it's undeniably a highly valuable contribution to the topic of secure Java coding. As such, it's a useful addition to the bookshelves of Java architects, developers, and application security auditors. --- ## Why Shop on Desertcart? - 🛒 **Trusted by 1.3+ Million Shoppers** — Serving international shoppers since 2016 - 🌍 **Shop Globally** — Access 737+ million products across 21 categories - 💰 **No Hidden Fees** — All customs, duties, and taxes included in the price - 🔄 **15-Day Free Returns** — Hassle-free returns (30 days for PRO members) - 🔒 **Secure Payments** — Trusted payment options with buyer protection - ⭐ **TrustPilot Rated 4.5/5** — Based on 8,000+ happy customer reviews **Shop now:** [https://www.desertcart.co.uk/products/87077217-the-cert-oracle-secure-coding-standard-for-java-1e](https://www.desertcart.co.uk/products/87077217-the-cert-oracle-secure-coding-standard-for-java-1e) --- *Product available on Desertcart United Kingdom* *Store origin: GB* *Last updated: 2026-05-18*