Improving Java Application Security with Practical Hardening Strategies by SHAUN SMITH

For updates and more, join our community 👉 https://www.linkedin.com/company/devoxx-united-kingdom Recent high profile vulnerability exploits have increased the focus on Java security. But application security is more than just keeping up with the latest JDK security fixes and running scanners. You can take active steps to harden your application by reducing the attack surface area of both the application and the operating system (container image) it’s deployed on. In this session we’ll share some practical techniques for harden applications including using Jlink to remove unused modules, GraalVM Native Image to eliminate all unused classes and methods, and minimal container images that strip out all unnecessary packages to provide just enough operating system for an application. We’ll even see how it’s possible to deploy a fully self-contained minimal Java application on a scratch image!