April 2011
Intermediate to advanced
500 pages
16h 12m
English
Content preview from Developer's Guide to Web Application Security
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
Summary
In this chapter, we saw how Java addresses the five tenets of security: containment,
authorization, authentication, encryption, and auditing. Java is very strong in some
areas of security, especially with containment. It is apparent that Sun’s first priority
was building an environment that protects Java users from potential harm. It was this
focus on security that lead Sun to include the Java Authentication and Authorization
Services, Java Cryptography Extension, and Java Secure Socket Extension into the
latest versions.
Let’s review the mechanisms Java uses to provide security. Containment is
achieved using a security manager and a policy file. ...