Uploaded image for project: 'Product Roadmaps'
  1. Product Roadmaps
  2. MMF-1852

8 java security rules focusing on cryptography domain

    Details

    • Type: MMF
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Fix Version/s: None
    • Labels:

      Description

      WHAT

      • RSPEC-4423 Weak SSL and TLS protocols should not be used
      • RSPEC-4830 Server certificates should be verified during SSL⁄TLS connections
      • RSPEC-5527 Server hostnames should be verified during SSL⁄TLS connections
      • RSPEC-5542 Encryption algorithms should be used with secure mode and padding scheme
      • RSPEC-5547 Cipher algorithms should be robust
      • RSPEC-3330 Creating cookies without the "HttpOnly" flag is security-sensitive
      • RSPEC-2092 Creating cookies without the "secure" flag is security-sensitive
      • RSPEC-4426 Cryptographic keys should be robust

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                alexandre.gigleux Alexandre Gigleux
                Reporter:
                alexandre.gigleux Alexandre Gigleux
              • Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: