Tim Ellison | Devoxx

Tim Ellison
Tim Ellison Twitter


Tim is a senior member of IBM's Runtimes Technology Centre with responsibility for open source engineering projects.

Prior to his current position he was part of the original Eclipse development team, and a Vice President of the Apache Software Foundation Harmony Project. He is a member of the JSR376 expert group designing the Java modularity system, and JSR379 defining the Java SE 9 platform. He has spoken at conferences worldwide on topics relating to security.

Tim has contributed to the commercial implementation of Smalltalk, IBM VisualAge, Eclipse, and the Java SDK over a long period. He has a broad knowledge of high performance runtimes, open source methodologies, and applying new language technology to difficult problems.

security Security

The Anatomy of Java Vulnerabilities


Java is everywhere. According to Oracle it’s on 3 billion devices and counting. We also know that Java is one of the most popular vehicles for delivering malware. But that’s just the plugin right? Well maybe not. Java on the server can be just at risk as the client.

In this talk we’ll cover all aspects of Java Vulnerabilities. We’ll explain why Java has this dubious reputation, what’s being done to address the issues and what you have to do to reduce your exposure. You’ll learn about Java vulnerabilities in general: how they are reported, managed and fixed as well as learning about the specifics of attack vectors and just what a ‘vulnerability’ actually is. With the continuing increase in cybercrime it’s time you knew how to defend your code. With examples and code this talk will help you become more effective in tacking security issues in Java.