Deserialisaation

Deserialisaation, also spelled deserialization or deserialisation, is the process of reconstructing data structures or objects from a serialized representation, typically a byte stream or text. It is the inverse of serialization, which converts in-memory objects into a storable or transmittable form. Deserialization is used in data interchange, persistence, caching, and remote procedure calls, and is supported by many programming languages and frameworks through formats such as JSON, XML, YAML (textual) and binary formats such as Protocol Buffers, Thrift, MessagePack, Avro, and Cap'n Proto.

The general workflow is: read the serialized input, parse according to the format, and instantiate in-memory

Security and correctness are major considerations. Deserializing untrusted input can lead to vulnerabilities such as arbitrary

Versioning and compatibility are also important: changes to object schemas or types may break deserialization. Techniques

Deserialization is a foundational mechanism in software systems, enabling persistence and communication, but requires careful handling