Oracle plans to drop support for data serialization/deserialization from the main body of Java language. Mark Reinhold, chief architect of the Java platform group at Oracle, says this is a “horrible mistake”” Java has been at the heart of a constant stream of security flaws in the Java ecosystem. Serialization is the process of converting a data object into a stream of bytes (binary format) into a binary format
Source: