This is a common fallacy. It might have been true 5 years ago, but not now. With modern JIT, typical server applications can be just as fast in Java as C++. I am not talking about a device driver, but a large complex program developed by many people over many years. These are the types of programs that we see buffer flow advisories on every week.

Overall architecture and good algorithms are much more important. Most products are slow because they spend their time doing unnecessary work or generating unnecessary network traffic. For example, our Java product was tested by a third party lab and its performance exceeds competitors products written in C++. The main reason is that our architecture allows us to eliminate most of the network traffic other products generate. Yet all the products solve the same problem for the customer


[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/52/9785#9785