Unfortunately, we are not in the best of worlds and building industry- strength crypto-enabled software based on the available providers is problematic. Problems are caused by shortcomings in the JCA/JCE (Java Cryptography Architecture/Java Cryptography Extension), which are in turn exacerbated by sloppy implementation and interpretation of the API and implementation guidelines. I present techniques for building providers in an interoperable fashion, identifying mistakes to avoid. I also outline the scope of applications that should be feasible to implement based on a provider-independent layer-in particular, the JCA/JCE
Java is a popular programming language designed by Sun Microsystems and used for desktop application...
Description: Artifact Package for the paper Dealing with Variability in API Misuse Specification, ac...
As the cornerstone of the internet, cryptography is becoming increasingly important in software deve...
When a vulnerability is discovered in a cryptographic algorithm, or in a specific implementation of ...
Background: Previous research has shown that crypto APIs are hard for developers to understand and d...
To protect sensitive data processed by current applications, developers, whether security experts or...
While cryptography is now readily available to everyone and can, provably, protect private informati...
While cryptography is now readily available to everyone and can, provably, protect private informati...
Recent studies have revealed that 87 % to 96 % of the Android apps using cryptographic APIs have a m...
The introduction of Java applets has taken the World Wide Web by storm. Information servers can cust...
) Li Gong JavaSoft, Cupertino, California gong@eng.sun.com http://java.sun.com/people/gong/ Decembe...
Language-based security provides a means to enforce end-to-end condentiality and integrity policies ...
Jini is an infrastructure built on top of the mobile code facilities of the Java programming langua...
An essential element of secure coding in the Java programming language is well-documented and enforc...
The paradigm of Trusted Computing promises a new approach to improve the security of computer system...
Java is a popular programming language designed by Sun Microsystems and used for desktop application...
Description: Artifact Package for the paper Dealing with Variability in API Misuse Specification, ac...
As the cornerstone of the internet, cryptography is becoming increasingly important in software deve...
When a vulnerability is discovered in a cryptographic algorithm, or in a specific implementation of ...
Background: Previous research has shown that crypto APIs are hard for developers to understand and d...
To protect sensitive data processed by current applications, developers, whether security experts or...
While cryptography is now readily available to everyone and can, provably, protect private informati...
While cryptography is now readily available to everyone and can, provably, protect private informati...
Recent studies have revealed that 87 % to 96 % of the Android apps using cryptographic APIs have a m...
The introduction of Java applets has taken the World Wide Web by storm. Information servers can cust...
) Li Gong JavaSoft, Cupertino, California gong@eng.sun.com http://java.sun.com/people/gong/ Decembe...
Language-based security provides a means to enforce end-to-end condentiality and integrity policies ...
Jini is an infrastructure built on top of the mobile code facilities of the Java programming langua...
An essential element of secure coding in the Java programming language is well-documented and enforc...
The paradigm of Trusted Computing promises a new approach to improve the security of computer system...
Java is a popular programming language designed by Sun Microsystems and used for desktop application...
Description: Artifact Package for the paper Dealing with Variability in API Misuse Specification, ac...
As the cornerstone of the internet, cryptography is becoming increasingly important in software deve...
Add to ORKG