Chapter 12. Outside the Box
Cryptography is a powerful tool, but it is only part of the application programmer’s repertoire. To create a secure application, the programmer needs to see the entire system, analyze its weaknesses, and plug up the holes. The first 11 chapters of this book cover cryptographic programming in Java; in this chapter I’ll point out some other noteworthy areas of security programming, with a specific focus on Java. If you’re new to secure systems design, this chapter should open your eyes to secure systems design issues. A lot of things can go wrong with a secure system; I’ll try to hit the high points in this chapter.