user1514499 user1514499 - 2 months ago 27
Java Question

Serialization - How to secure a serialized JAVA object?

How can I secure the serialized object if I send the serialized object over the network?
I doubt that hackers may interrupt/hack my data.

can anyone tell in detail about how to implement this?


These 2 presentations give ideas on how effectively attackers can tamper a Java serialized stream:



    There is also the risk of injecting unsuspected behavior and inject code in case a vulnerable class exists on the server's classpath. See this article:

Look-ahead Java deserialization