Java Security

9.

Modern Java Security Features

9.1.

Module System Security

9.1.1.

Strong Encapsulation

9.1.1.1.

Package Visibility Control

9.1.1.2.

Reflection Restrictions

9.1.1.3.

Deep Reflection

9.1.2.

Module Boundaries

9.1.2.1.

9.1.2.2.

Dependency Management

9.1.2.3.

Service Loading

9.1.3.

Module Directives

9.1.3.1.

Requires Directives

9.1.3.2.

Exports Directives

9.1.3.3.

Opens Directives

9.1.3.4.

Provides Directives

9.2.

Security Manager Evolution

9.2.1.

Deprecation Timeline

9.2.1.1.

Java 17 Deprecation

9.2.1.2.

9.2.1.3.

Migration Timeline

9.2.2.

Alternative Security Models

9.2.2.1.

Container-Based Security

9.2.2.2.

Operating System Security

9.2.2.3.

Process Isolation

9.2.3.

Migration Strategies

9.2.3.1.

Code Assessment

9.2.3.2.

Alternative Implementations

9.2.3.3.

Testing Approaches

9.3.

Enhanced Cryptography

9.3.1.

Algorithm Updates

9.3.1.1.

Deprecated Algorithms

9.3.1.2.

Recommended Algorithms

9.3.1.3.

Default Algorithm Changes

9.3.2.

Protocol Support

9.3.2.1.

TLS 1.3 Implementation

9.3.2.2.

Modern Cipher Suites

9.3.2.3.

Perfect Forward Secrecy

9.3.3.

Quantum-Resistant Cryptography

9.3.3.1.

Post-Quantum Algorithms

9.3.3.2.

Migration Planning

9.3.3.3.

Implementation Considerations

9.4.

Deserialization Security

9.4.1.

Built-in Filtering

9.4.1.1.

9.4.1.2.

Context-Specific Filters

9.4.1.3.

Filter Configuration

9.4.2.

Filter Implementation

9.4.2.1.

Pattern-Based Filtering

9.4.2.2.

Custom Filter Logic

9.4.2.3.

Performance Considerations

9.4.3.

Monitoring and Logging

9.4.3.1.

Deserialization Events

9.4.3.2.

Security Violations

9.4.3.3.

Previous

8. Secure Coding Practices

Go to top

Next

10. Security Testing and Analysis