In this course, you will learn how to mitigate the risks associated with insecure deserialization.
On successful completion of this course, learners should have the knowledge and skills to apply secure coding best practices to mitigate Insecure Deserialization vulnerabilities, including:
- Implementing integrity checks such as digital signatures on any serialized objects
- Enforcing strict type constraints
- Isolating code
- Restricting network connectivity
If you would like to provide feedback for this course, please e-mail the NICCS SO at NICCS@hq.dhs.gov.