What PHP Needs to Learn From Java | JAVA Developer's Journal

Search

Java Authors: App Man, Liz McMillan, Jeremy Geelan, Yakov Fain, Hari Gottipati

Related Topics: Linux, Java, Open Source

Linux: Article

What PHP Needs to Learn From Java

We all know that there isn't a single language or platform that is totally secure

By Calvin Austin	Article Rating:
May 12, 2007 01:45 PM EDT	Reads:	24,334

Related
Print
Email
Feedback
Add This
Blog This

We all know that there isn't a single language or platform that is totally secure, much in the same way that no matter how well you secure your house, its still possible to leave a door unlocked. However if your house has few locks, open windows and is it a bad neighborhood, shouldn't you do something about it?

The house I am referring to is PHP, great for prototyping and building applications quickly, but has a long way to go before it provides the automatic piece of mind Java does. We track vulnerabilities on all platforms and applications that use PHP are often the target of attacks. Was it the application developers fault, possibly, but there is little help for PHP developers to find out if they are really writing insecure code and without a security manager like Java, any small mistake can become a big exploit.

CIO, CTO & Developer Resources

My colleague Ezra has started a new open source php security tool to audit php applications, phpsecaudit if you have any php code lying around check it out. We are looking for other contributors too. As for me, my first choice is still Java, even if it does take longer to create something the first time around.

Published May 12, 2007 – Reads 24,334
Copyright © 2007 SYS-CON Media, Inc. — All Rights Reserved.
Syndicated stories and blog feeds, all rights reserved by the author.

Related
Print
Email
Feedback
Add This
Blog This

More Stories By Calvin Austin

A section editor of JDJ since June 2004, Calvin Austin is an engineer at SpikeSource.com. He previously led the J2SE 5.0 release at Sun Microsystems and also led Sun's Java on Linux port.

Comments (3) View Comments

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.

Most Recent Comments

	z 07/28/06 04:35:36 PM EDT
	Can this guy really be serious? "Automatic peace of mind" from a programming language? Come on, get real. How many web app developers out there have the faintest clue what the SecurityManger API is anyway? Perhaps someone knows how the java SecurityManager automatically protects against XSS or SQL Injection vulnerabilities - since these are the two most common exploits in web applications.

	tcherbin 07/27/06 07:53:39 PM EDT
	This is total rediculous article and even the idea of it makes me furious.. The article should be about how idiot web programmers should stop using glorified languages like java to program web pages.. Another article is Who would hire a java programmer to do a web page, what corporate executives need to learn about their java programmers.

	JDJ News Desk 07/26/06 04:05:45 PM EDT
	We all know that there isn't a single language or platform that is totally secure, much in the same way that no matter how well you secure your house, it's still possible to leave a door unlocked. However if your house has few locks, open windows and is it a bad neighborhood, shouldn't you do something about it?

Related Stories

Comments

Drool, Britannia? Is the UK Failing the Cloud?

By Roger Strukhoff

Richard Davies wrote: The UK has a good crop of technology pioneers in cloud computing - for example ElasticHosts, FlexiScale, Flexiant, OnApp - and also some strong government initiatives such as G-Cloud. We will have to see whether this kind of technical leadership converts into swift mass-market adoption or not.

Jan. 8, 2012 11:38 AM EST

read more & respond »

Latest Java News

Cloud Expo Speaker Profile: Arun Gupta

By Jeremy Geelan

With Cloud Expo 2012 New York (10th Cloud Exp...

Feb. 15, 2012

Cloud Expo & Virtualization 2011 West

Keynotes

Opening Keynote | An Enterprise Cloud for Business-Critical Applications

Day 2 Keynote | The Enterprise Cloud Tightrope - Balancing for Success

Day 3 Keynote | The DNA of an Enterprise Cloud

DIAMOND SPONSOR:

Many Clouds, Many Choices'Cloud

PLATINUM PLUS SPONSORS:

Enterprise Cloud Best Practices - Town Hall - Join the discussion…

PLATINUM SPONSORS:

Progressing Toward the Federated, Automated and Client-Aware Cloud

How to build an app with Twitter-like throughput

Computing in the Cloud Era

GOLD SPONSORS:

Gale Technologies

Practical Cloud Migration

Re-think IT. Re-inventing Business.

Identity Driven Security in the Cloud

Hackers Hackers Everywhere, Is My Public Cloud That Safe?

Unlock the Value of the Cloud

Mission Critical Applications and the Cloud - Myth or Reality?

Not Your Grandpa's Cloud

Integrating Enterprise Clouds

Upgrade to a vCloud

POWER PANELS:

Cloud Expo Silicon Valley: CTO Power Panel

Cloud Expo Silicon Valley: CEO Power Panel

Cloud Expo Silicon Valley: Cloud SuperStars Panel

Cloud Expo Silicon Valley: CloudNOW Panel

Click For 2010 West
Event Webcasts

Cloud Expo & Virtualization 2011 East

DIAMOND SPONSOR:

Dell & VMware Deliver the Enterprise Hybrid Cloud

PLATINUM PLUS SPONSORS:

Are Financial Services Organizations Risking Security by Avoiding Cloud Computing?

From Consolidation to Enterprise Private PaaS

PLATINUM SPONSORS:

Driving the Transformation to Next Generation Cloud Data Centers

The Inevitability of an Open Cloud

GOLD SPONSORS:

CA Technologies

Follow YOUR path to Cloud Computing

Who Keeps the Cloud in the Air?

Patterns for Cloud Computing

War in the Clouds: Are you ready?

The Big Win: Stop Playing Small-Ball with Your Cloud Strategy

Evaluating Enterprise Clouds

Cloud Storage: Myths and Realities

POWER PANELS:

Cloud Expo New York: CTO Power Panel

Cloud Expo New York: CEO Power Panel

Cloud Expo New York: CMO Power Panel

Cloud Expo New York: Wrap-Up Power Panel

Click For 2010 West
Event Webcasts

Topics

From the Blogosphere

From the Editor

Hibernate | JSF | Spring

Java Industry News

Product Reviews

Yakov's Gas Station

Is Your Business 100% Ready for the New Era of Cloud Computing and Big Data?
The Only Enterprise IT Event in 2012 Covering the Entire Scope of both Cloud & Big Data

Come to New York and get yourself up to date with the Big Data revolution! As advanced data storage, access and analytics technologies aimed at handling high-volume and/or fast moving data all move center stage, aided by the Cloud Computing boom, Cloud Expo is the single most effective event for you to learn how to use you own enterprise data – processed in the Cloud – most effectively to drive value for your business.

There is little doubt that Big Data solutions will have an increasing role in the Enterprise IT mainstream over time. Get a jump on that rapidly evolving trend at Big Data Expo, which we are introducing in June at Cloud Expo New York.

Cloud Expo was announced on February 24, 2007, the day the term "cloud computing" was coined. That same year, the first Cloud Expo took place in New York City with 450 delegates. Next June, Cloud Expo is returning to New York with more than 10,000 delegates and over 600 sponsors and exhibitors.

"Cloud" has become synonymous with "computing" and "software" in two short years. Cloud Expo is the new PC Expo, Comdex, and InternetWorld of our decade. By 2012, more than 50,000 delegates per year will participate in Cloud Expo worldwide.

The cloud is certainly a compelling alternative to running all applications within a traditional corporate data center. But moving from theory into practice is where things get complicated, and this is where attending a top industry event like Cloud Expo comes in.

No one can take full advantage of cloud computing without first becoming familiar with the latest issues and trends, which is why the organizing principle of the 10th International Cloud Conference & Expo on June 11-14, 2012 - is to ensure - through an intensive four-day schedule of keynotes, general and breakout sessions, and our bustling Expo Floor - that attending delegates leave the Javits Center with abundant resources, ideas and examples they can apply immediately to leveraging the Cloud, helping them to maximize performance, minimize cost and improve the scalability of their Enterprise IT endeavors.

Delegates will leave Cloud Expo with dramatically increased understanding the entire scope of the entire cloud computing spectrum from storage to security.

Whether you're an enterprise or small to medium business, you'll soon be benefiting from the Cloud. Join your peers in New York City June 11-14, and maximize those benefits already in 2012. See you in New York City!

Register Now!
Save $500 on your “Golden Pass”! Call 201.802.3020
or click here to Register
Early Bird Expires Friday.

Speaker Opportunities
Submit your speaking proposal for the upcoming Cloud Expo in New York City
[June 11-14, 2012]

Exhibitor Info
Please Call 201.802.3021
events (at) sys-con.com.
Carmen Gonzalez,
carmen (at) sys-con.com.

Produced and presented by Cloud Expo, Inc.

close this window