ABSTRACT
Secure coding practices play a critical role in the development of secure Web applications. Enterprises need to ensure that the Web applications that process mission-critical or sensitive information are equipped with robust access control mechanisms, cryptographic implementations, and logging implementations for ensuring security. However, several attacks against Web applications are caused by vulnerabilities that manifest in the application by the use of nonsecure coding practices. We will discuss some of the secure coding practices that are appropriate for Web applications developed and implemented using the Java platform. We will also highlight the types of attacks and vulnerabilities that are averted by employing these secure coding practices to best effect.
