++ Status Update +++
What is this all about? This is a random, unorganized, and a bit chaotic collection of security, programming, and teaching related topics.
I’m a Ph.D. student in computer science at University Paderborn. I’m interested in the secure design of modern software supported by module systems, like the one provided by Java 9 and Rust.
PhD Student in Computer Sciene, since 2016
MSc in Computer Science, 2016
BSc in Computer Sciene, 2013
TL;DR Finding an easy-to-use scrum tool is not that easy. In this post, I’ll take a look at different tools that support Product Backlog Creation, Task Management, and Sprint Planning. While there exists a lot of different tools, I investigated OpenProject, Tagia.io, and Pivotal Tracker. While all tools support agile software development, backlogs, sprint planning, OpenProject and Pivotal Tracker target professional development teams including time and budget management. For an undergraduate course, we decided to use Taiga.io which provides a beautiful user interface and is boiled down to essential features, and thus is easy-to-use.
With Java being one of the top three programming languages on GitHub 2017 1, it has been subject to several vulnerabilities and attacks undermining Java’s sophisticated security model 2. Often attackers found ways to access protected areas in Java, that originally should be isolated and inaccessible.
One can find (almost) no vulnerabilities for popular Java libraries, e.g., apache-commons, google-guava, in the CVE and NDE database. See Chart
Are Java libraries secure by default?
Does no one reports vulnerabilities in Java libs?
Student Supervision – Theses 2018–2019: R. Keller (BA). Vulnerabilities in Java 9 Modules