Languages and Frameworks in Application and Data Security

DZone 's Guide to

Languages and Frameworks in Application and Data Security

JavaScript, Java, and C++ were most frequently mentioned by respondents.

· Performance Zone ·
Free Resource

To gather insights on the state of application and data security, we spoke with 19 executives who are involved in application and data security for their clients.

Here’s who we talked to:

Sam Rehman, CTO, Arxan | Brian Hanrahan, Product Manager, Avecto | Philipp Schoene, Product Manager IAM & API, Axway | Bill Ledingham, CTO, Black Duck | Amit Ashbel, Marketing, Checkmarx | Jeff Williams, CTO and Co-Founder, Contrast Security | Tzach Kaufman, CTO and Founder, Covertix  | Jonathan LaCour, V.P. of Cloud, Dreamhost | Anders Wallgren, CTO, Electric Cloud  | Alexander Polykov, CTO and Co-Founder, ERPScan | Dan Dinnar, CEO, HexaTier | Alexey Grubauer, CIO, Jumio | Joan Wrabetz, CTO, Quali | John Rigney, CTO, Point3 Security | Bob Brodie, Partner, SUMOHeavy | Jim Hietala, V.P. Business Development Security, The Open Group | Chris Gervais, V.P. Engineering, Threat Stack | Peter Salamanca, V.P. of Infrastructure, TriCore Solutions | James E. Lee, EVP and CMO, Waratek

Here's what they told us when we asked them, "Which programming languages and frameworks do you, or your firm, use?"

  • It’s better to do vulnerability analysis and attack blocking within the application itself. We use Java instrumentation APIs. Instruments are running within the applications to see what’s going on from the inside. We’re able to see patterns that look unusual. We use Java, .Net, NodeJS, and Cold Fusion to Java EE, and Spring to a REST API.
  • We use C++ at a low level with many new features. For agentless, we us HTML5 and JavaScript. We also use REST APIs with WCS so we can work with all kinds of languages.
  • Java and JavaScript – it’s all about languages and frameworks. We use Hibernate for databases.
  • C++ for agents and endpoints, Python, SQL Alchemy
  • We use whatever the clients want. We’re not Java heavy. We use PHP, Ruby, JavaScript – Node and Ember. Train engineers with core CX values for sorting and parsing. Learn syntaxes.
  • Broad support for everything Linux, Windows and any programming language. Attract Open Source – Go, Python, JavaScript. Groovy. We maintain a GitHub document repository.
  • We use a mix of C, C++, .Net, and PowerShell. We’re selective about third party libraries and open source since they could have vulnerabilities.
  • Java ecosystem server products for large complex applications. Native code C and C++ for agent processes. Tons of scripting with Perl and Tickle. New things are coming along that allow for an innovative UI development with JavaScript, Coffee Script. Tons Open Source like Spring and Hibernate on the backend.
  • Web Open Source libraries, Java, AngularJS, Spring. Mobile: SDK, Android, iOS, Java, object oriented.
  • We cover all Open Source and more than 70 languages.
  • Linux, Eclipse, Java.
  • Supports a wide range. JavaScript (90%) frameworks, NodeJS. 21 languages including scripting languages, mobile development (i.e. Swift). Ultimately we’ll have a single solution versus multiple coding languages.
  • Our product is only for Java-based apps today but we expect to launch a .NET version in 2017.
  • We implemented Scala on the backend for concurrency, NodeJS, JavaScript, while our agents are in C for speed.
  • C, C#, C++, and JavaScript on the front end. XML and JSON for the metadata. All shells are open source and automated with Python.
  • We use a variety of languages and frameworks internally. Open Source is an important contributor in some ways as well as we contribute to Open Source projects. We kind of have common libraries that our development teams create and share. Same spirit like Open Source but internally. Our toolset that we provide in the context of mobile app development is done in JavaScript and called Appcelerator Titanium. It’s a cross platform development environment. The API management product which serves as a governance, orchestration, and security layer is built on Java and C. We also use MOD Security for our API firewalling technology combined with our own policy engine. In regards to Web Application Security the OWASP Foundation is providing some good guidelines and helpers.
  • C and C++.
  • Whatever our clients are using.

What languages and frameworks do you use most frequently for application and data security?

c++, frameworks, java, javascript, open source

Opinions expressed by DZone contributors are their own.

{{ parent.title || parent.header.title}}

{{ parent.tldr }}

{{ parent.urlSource.name }}