• Title: Java Authentication and Authorization Service (JAAS) in Action
• Author(s) Michael Cote
• Publisher: Leanpub (2005), eBook (August, 2009)
• eBook: PDF
• Language: English
• ISBN-10: N/A
• ISBN-13: N/A
• Share This:  

Book Description

Introduced as an option for JDK 1.3.1 and incorporated into J2EE 1.4, today JAAS has been quite widely adopted by commercial and open source vendors as the primary pluggable authentication framework for SE and EE applications alike.

Complex security domains are where JAAS comes in handy. Additionally, most application servers and servlet containers use JAAS to provide a way to pass login information into the application. The application can even take advantage of login methods provided by the application server and never deal with the interaction with the user.

By the end of this book, you will both understand and use the functionality in JAAS, and also be able to replace many of the pieces provided by the JDK or whatever application server you may be using with your own custom classes.

• N/A

• Amazon

• Java Security
• Enterprise Java (Java EE, Persistence, Web Services, Messaging, Spring, etc.)
• Advanced Java Programming
• Java Web Frameworks, MVC - Srtuts, JSF, Spring MVC, etc

• JAAS in Action (Michael Cote)
• The Mirror Site (1) - HTML
• The Mirror Site (2) - PDF
• Book Homepage
• Spring Security: Authentication and Authorization In-Depth (Marco Behler)

• Pairing Apache Shiro and Java EE 7 (Nebrass Lamouchi)

  Learn how to use Apache Shiro in a JavaEE7 application and how to use it in a web application. This book will help you find out what Shiro actually is, and will help you to secure your Java EE project from scratch and to understand the security philosophy.

• Practical Guide to Building an API Back End with Spring Boot

  Starting your first project with Spring Boot can be a bit daunting given the vast options that it provides. This book will guide you step by step along the way to be a Spring Boot hero in no time.

• Java 2 Network Security (Marco Pistoia, et al)

  This book provides the complete insiders guide to securing Java 2 enterprise applications, with comprehensive coverage of the new Java 2 security models. Designed to help you integrate Java 2 into your enterprise security strategies.

• Securing Java: Getting Down to Business with Mobile Code

  This book navigates the uncharted waters of mobile code security and arms the reader with the knowledge required for securing Java. It reveals a menagerie of applets that have circumvented Java security to achieve a variety of noisome and damaging ends.

• O'Reilly® Java Security (Scott Oaks)

  This book provides the Java programmer with a complete overview of the Java security architecture and security classes, plus a wealth of detailed information and code examples for specific implementations.

• UNIX System Security: A Guide for Users & System Administrators

  This book begins by examining four high-profile breaches of UNIX security as illustrations of how a UNIX system can be attacked. It then provides the information necessary to protect against these forms of attack, and offers the tools.

• Security of Ubiquitous Computing Systems (Gildas Avoine, et al)

  It is to improve and adapt existent cryptanalysis methodologies and tools to the ubiquitous computing framework that lies along four axes: cryptographic models, cryptanalysis of building blocks, security engineering, and security assessment.

• Security Engineering: Building Dependable Distributed Systems

  It makes it clear just how difficult it is to protect information systems from corruption, eavesdropping, unauthorized use, and general malice, offers a lot of thoughts on how information can be made more secure by both technologies and strategies.