
Résumé
J2EE developers have an extraordinary array of powerful options for securing their Web services, Web applications, EJB components and RMI objects. Now, expert Java architect Pankaj Kumar helps developers make sense of Java's increasingly rich security APIs, tools, patterns, and best practices-showing how to use each of them in the right place, at the right time, and in the right way.
Kumar covers every significant J2SE and J2EE security mechanism, presenting practical implementation techniques for the entire J2EE project lifecycle: analysis, design, development, deployment and operations. The book's example-rich coverage includes:
- Implementing cryptography with the JCA (Java Cryptography Architecture) and JCE (Java Cryptography Extension) security APIs
- Building PKI systems with Java: implementing X.509 certificates, Certification Authorities, Certificate Revocation Lists, and repositories
- Java security managers, policy files, and JAAS: implementing access control based on code origin, code signer and user credentials
- Securing the wire: Using SSL and the JSSE API to secure data exchange over unprotected networks
- Ensuring XML message integrity, authentication, and confidentiality with the standards: XML Signature & XML Encryption using the VeriSign TSIK, and Infomosaic SecureXML libraries
- Addressing security issues in RMI-based distributed applications
- Developing and deploying servlets and EJBs for authenticated and secure access
- Securing Web services with transport- and message-based security: SSL for transport-based and WS Security for message-based security
- Covering securityaspects of best-of-breed products: Apache Tomcat, Apache Axis, and BEA WebLogic Server.
Contents
- I The background
- A Security Primer
- A Quick Tour of the Java Platform
- II The technology
- Cryptography with Java
- PKI with Java
- Access Control
- Securing the Wire
- Securing the Message
- III The application
- RMI Security
- Web Application Security
- EJB Security
- Web Service Security
- Conclusions
- Appendix A: Public Key Cryptography Standards
- Appendix B: Standard Names—Java Cryptographic Services
- Appendix C: JSTK Tools
- Appendix D: Example Programs
- Appendix E: Products Used For Examples
- Appendix F: Standardization Bodies
- References
- Index
L'auteur - Pankaj Kumar
is Software Architect at Hewlett-Packard's Web Services Management Organization and has worked extensively in the area of middleware and security. He has presented on Java and Web services technologies at events ranging from SD West and SD Forum to HP World.
Caractéristiques techniques
PAPIER | |
Éditeur(s) | Prentice Hall |
Auteur(s) | Pankaj Kumar |
Parution | 23/10/2003 |
Nb. de pages | 426 |
Format | 17,5 x 23 |
Couverture | Broché |
Poids | 885g |
Intérieur | Noir et Blanc |
EAN13 | 9780131402645 |
Avantages Eyrolles.com
Consultez aussi
- Les meilleures ventes en Graphisme & Photo
- Les meilleures ventes en Informatique
- Les meilleures ventes en Construction
- Les meilleures ventes en Entreprise & Droit
- Les meilleures ventes en Sciences
- Les meilleures ventes en Littérature
- Les meilleures ventes en Arts & Loisirs
- Les meilleures ventes en Vie pratique
- Les meilleures ventes en Voyage et Tourisme
- Les meilleures ventes en BD et Jeunesse