Method and variable handles vs. Java reflection To truly understand MethodHandles and VarHandles —what they do and why they are useful—it’s helpful to know a few things about reflection in Java.

The book Java Reflection in Action was published in 2004, but remains largely applicable eight years later. In this post, I review this book and cover its strengths and its weaknesses. In general ...

Java object serialization is a feature of the JDK that is far too often overlooked. When a developer puts together a prototype or cooks up a proof of concept, simply saving a serialized Java object to ...

Learn about serialization in Java with our comprehensive tutorial. We provide examples to help you understand how serialization works.

Last month, Oracle's chief architect, Mark Reinhold, said during a conference Q&A that one of Oracle's long-term goals is to change the way Java handles object serialization. In fact, he called the ...

The Java Serialization API provides a standard mechanism for developers to handle object serialization. In this tip, you will see how to serialize an object, and why serialization is sometimes ...

There is little doubt that serialization issues plague Java and that addressing the underlying causes will benefit the Java community. But, how long will it take to bring a new approach to the ...

Researchers have discovered a new vulnerability in the Java Reflection API that can be exploited by a decade-old attack.

While the Java and .NET deserialization issues were limited to third-party libraries, having deserialization issues impact Ruby itself greatly increases a hacker's attack surface.