Loading…
This event has ended. Visit the official site or create your own event on Sched.
Get your ticket and additional info and support at jcon.one
Back To Schedule
Tuesday, September 20 • 17:00 - 17:50
Serialization & Object Graph Communication

Log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
In fact, Java serialization was well designed for its intended purposes. In the 1990s, big issues of the day were the transparent persistence of objects and distributed objects. Transparent persistence is the ability to save and restore objects without requiring explicit code in those objects. With distributed objects, objects and interactions between objects are transmitted over a network, as in Java RMI. In the context of the late 1990s, Java serialization supported both goals quite well. Over the years, the design flaws and security weaknesses were recognized. We will discuss how data serialization and deserialization are used in software, the dangers of deserializing untrusted input, and how to avoid deserialization vulnerabilities.

Speakers
avatar for Florian Habermann

Florian Habermann

CTO, Microstream
Java since 1999. For over 20 years, the main goal of his daily work is making database development with Java much easier and faster than it is today. He still uses every free minute for coding and research.


Tuesday September 20, 2022 17:00 - 17:50 CEST
#3 Java Cloud Native