Skip to main content
  • Log in
  • Manage Cookies
EclipseCon - Eclipse Foundation
  • Conference
    • Program Schedule
    • Program List
    • Registration
  • Features
    • Community Day
    • Hacker Day
    • Dinner Meetups
    • OSGi Summit
    • Keynotes
  • Community
    • Code of Conduct
    • Health & Safety at EclipseCon
    • Community Resources
    • 2022 Speakers
    • Information for Speakers
  • Sponsors
    • Be a Sponsor
    • Information for Exhibitors
    • Our Sponsors
    • Sponsor Testimonials
  • Venue
    • Conference Venue
    • Hotels
    • Ludwigsburg
  • About Us
    • EclipseCon 2022
    • Program Committee
    • The Eclipse Foundation
    • Past Conferences
    • Other Events
  1. Home
  2. EclipseCon
  3. EclipseCon 2022
  4. Sessions
  5. Security Vulnerabilities for Java Developers

Security Vulnerabilities for Java Developers

Session details
Status: 
Speaker(s) Cancelled
Speaker(s): 
Brian Demers (Other)
Experience level: 
Beginner
Tags: 
cve
vulnerability
security
Session Track: 
All Things Quality & Security
Session Type: 
Standard

Ever seen a security-related issue that you felt should be reported? Unsure of how reporting a security issue is different than a regular bug? Developers of any level should know how to report a vulnerability. In this talk, we will talk about what CVEs are, some general vulnerability classifications, look at a few ways you can report security issues, as well as look at a few common mistakes.

Knowing how to report a vulnerability is just half the battle, you also need to keep your applications free of them. We will dig into the recent Log4Shell vulnerability and discuss lessons learned when scrambling to update versions. Finally, we will talk about how this scramble can be avoided by getting notifications when new security issues are announced, and how to keep your applications updated automatically.

This talk is geared toward non-security professionals.

Slides (External URL): 
https://www.youtube.com/watch
Objective of the presentation: 
* What is a CVE * How to report one * Why they are handled differently than a regular bug * What you can do for your code bases
Attendee pre-requisites - If none, enter "N/A": 
N/A
Schedule info
Time: 
25 Oct 2022 - 10:45 to 25 Oct 2022 - 11:20
Room: 
Schubartsaal
  • Sign in to post comments.

Elite

  • IBM
  • Huawei

Premium

  • Eurotech
  • Yatta Solutions GmbH
  • Red Hat

Basic

  • SCANOSS
  • Obeo
  • TypeFox GmbH
  • SSI Schaefer IT Solutions GmbH
  • ARCAD Software
  • Bosch IO GmbH
  • EclipseSource
  • Mercedes-Benz Tech Innovation

Media

  • GermanTechJobs

Become a Sponsor

Eclipse Foundation

  • About Us
  • Contact Us
  • Sponsor
  • Members
  • Governance
  • Code of Conduct
  • Logo and Artwork
  • Board of Directors
  • Careers

Legal

  • Privacy Policy
  • Terms of Use
  • Copyright Agent
  • Eclipse Public License
  • Legal Resources

Useful Links

  • Report a Bug
  • Documentation
  • How to Contribute
  • Mailing Lists
  • Forums
  • Marketplace
EclipseCon is brought to you by The Eclipse Foundation with the support of our sponsors.
Powered by Drupal and built on COD.

Copyright © Eclipse Foundation. All Rights Reserved.

Back to the top