diff --git a/rules/S6288/java/rule.adoc b/rules/S6288/java/rule.adoc
index 79d6542388..24bc069fe9 100644
--- a/rules/S6288/java/rule.adoc
+++ b/rules/S6288/java/rule.adoc
@@ -1,4 +1,43 @@
-include::../rule.adoc[]
+include::../description.adoc[]
+
+include::../ask-yourself.adoc[]
+
+include::../recommended.adoc[]
+
+== Noncompliant Code Example
+
+Any user can use the key: 
+
+----
+KeyGenerator keyGenerator = KeyGenerator.getInstance(KeyProperties.KEY_ALGORITHM_AES, "AndroidKeyStore");
+
+KeyGenParameterSpec builder = new KeyGenParameterSpec.Builder("test_secret_key_noncompliant", KeyProperties.PURPOSE_ENCRYPT | KeyProperties.PURPOSE_DECRYPT) // Noncompliant
+    .setBlockModes(KeyProperties.BLOCK_MODE_GCM)
+    .setEncryptionPaddings(KeyProperties.ENCRYPTION_PADDING_NONE)
+    .build();
+
+keyGenerator.init(builder);
+----
+
+== Compliant Solution
+
+The use of the key is limited to authenticated users (for a duration of time defined to 60 seconds):
+
+----
+KeyGenerator keyGenerator = KeyGenerator.getInstance(KeyProperties.KEY_ALGORITHM_AES, "AndroidKeyStore");
+
+KeyGenParameterSpec builder = new KeyGenParameterSpec.Builder("test_secret_key", KeyProperties.PURPOSE_ENCRYPT | KeyProperties.PURPOSE_DECRYPT)
+    .setBlockModes(KeyProperties.BLOCK_MODE_GCM)
+    .setEncryptionPaddings(KeyProperties.ENCRYPTION_PADDING_NONE)
+    .setUserAuthenticationRequired(true) 
+    .setUserAuthenticationParameters (60, KeyProperties.AUTH_DEVICE_CREDENTIAL)
+    .build();
+
+keyGenerator.init(builder)
+----
+
+include::../see.adoc[]
+
 ifdef::env-github,rspecator-view[]
 
 '''