Java Will Eliminate Serialization Feature

by Developer.com Staff

The change could dramatically improve security in the programming language.

Oracle has announced that it plans to eliminate the serialization feature in Java that was introduced in 1997. Mark Reinhold, chief architect of the Java platform group at Oracle, said that serialization was a "horrible mistake," and he estimated that one third to one half of Java security vulnerabilities since then have been related to serialization.

The company has a new initiative called Project Amber that will tackle the removal of serialization, as well as other productivity-related features in Java.

View article

This article was originally published on Thursday May 24th 2018
Mobile Site | Full Site