Inside Java

JDK17 JDK16 JDK 18 JDK 17 JDK 16 JDK 15 JDK 14 JDK 13 JDK 12 Amber Client Cloud Concurrency Core Libraries GC GraalVM HotSpot JFR Java Language Leyden Loom Modules Moved By Java Native Image Networking Oracle Panama Performance Security Serviceability Skara Valhalla security

Security

2021

• JDK 17 Security Enhancements by Sean Mullan on September 15, 2021
• A few updates to JEP 411: Deprecate the Security Manager for Removal by Sean Mullan on July 16, 2021
• Episode 18 “Java's steady march towards strong encapsulation” with Alan Bateman by Alan Bateman, Chad Arimura on June 29, 2021
• Oracle JRE and JDK Cryptographic Roadmap by Aurelio García-Ribeyro on June 11, 2021
• JEP proposed to target JDK 17: 415: Context-Specific Deserialization Filters by Mark Reinhold on June 1, 2021
• Updates to JEP 411: Deprecate the Security Manager for Removal by Sean Mullan on May 29, 2021
• Inside Java Newscast #5 by Nicolai Parlog, José Paumard on May 27, 2021
• JEP proposed to target JDK 17: 411: Deprecate the Security Manager for Removal by Mark Reinhold on May 21, 2021
• Updates to JEP 411: Deprecate the Security Manager for Removal by Sean Mullan on May 19, 2021
• JEP proposed to target JDK 17: 403: Strongly Encapsulate JDK Internals by Mark Reinhold on May 18, 2021
• New candidate JEP: 415: Context-Specific Deserialization Filters by Mark Reinhold on May 6, 2021
• Security and Sandboxing Post SecurityManager by Ron Pressler on April 23, 2021
• New candidate JEP: 411: Deprecate the Security Manager for Removal by Mark Reinhold on April 15, 2021
• How Java Records Can Improve Serialization by Julia Boes, Chris Hegarty on April 13, 2021
• Record Serialization in Practice by Julia Boes, Chris Hegarty on April 6, 2021
• JDK 16 Security Enhancements by Sean Mullan on March 18, 2021
• JEP proposed to target JDK 17: 398: Deprecate the Applet API for Removal by Mark Reinhold on March 17, 2021
• Simpler Serialization with Records by Julia Boes, Chris Hegarty on March 12, 2021
• Episode 14 “Records Serialization” with Julia Boes and Chris Hegarty by Julia Boes, Chris Hegarty, David Delabassee on March 8, 2021
• New candidate JEP: 398: Deprecate the Applet API for Removal by Mark Reinhold on March 5, 2021
• Monitoring Deserialization to Improve Application Security by Chris Hegarty on March 2, 2021
• Reducing MD5 (and SHA) overheads by Claes Redestad on February 14, 2021
• JEP proposed to target JDK 17: 356: Enhanced Pseudo-Random Number Generators by Mark Reinhold on January 29, 2021
• Investigating MD5 overheads by Claes Redestad on January 4, 2021

2020

• Oracle JRE and JDK Cryptographic Roadmap by Aurelio García-Ribeyro on December 18, 2020
• Oracle JRE and JDK Cryptographic Roadmap by Aurelio García-Ribeyro on November 16, 2020
• JDK 15 Security Enhancements by Sean Mullan on October 13, 2020
• Oracle JRE and JDK Cryptographic Roadmap by Aurelio García-Ribeyro on October 9, 2020
• Keeping Your Java Applications Secure - Cryptographic Improvements and Best Practices by Sean Mullan, Chris Ries on September 17, 2020
• SHA-3 based digital signatures support by Valerie Peng on August 18, 2020
• Record Serialization by Chris Hegarty, Alex Buckley on July 20, 2020
• JDK 14 Security Enhancements by Sean Mullan on March 19, 2020

2019

• Why We Hate Java Serialization by Brian Goetz, Stuart Marks on November 7, 2019
• What’s New in Java Security? by Brad Wetmore on September 19, 2019
• JDK 13 Security Enhancements by Sean Mullan on August 5, 2019
• JDK 12 Security Enhancements by Sean Mullan on March 19, 2019
• Oracle's Plan for Distrusting Symantec TLS Certificates in the JDK by Aurelio García-Ribeyro on January 25, 2019

security

2015

• Safety Not Guaranteed: sun.misc.Unsafe and the Quest for Safe Alternatives by Paul Sandoz on January 2, 2015