...
Rule | Severity | Likelihood | Detectable | Repairable | Priority | Level |
|---|---|---|---|---|---|---|
SEC04-J | High | Probable | No | Yes | P12 | L1 |
Automated Detection
Identifying sensitive operations requires assistance from the programmer; fully automated identification of sensitive operations is beyond the current state of the art.
...
| Tool | Version | Checker | Description | ||||||
|---|---|---|---|---|---|---|---|---|---|
| Parasoft Jtest |
| CERT.SEC04.SCF | Enforce 'SecurityManager' checks before setting or getting fields | ||||||
| Security Reviewer - Static Reviewer |
| Idor09 | Full Implementation |
Android Implementation Details
...