Best Practices
In this section, we'll summarize the best practices mentioned throughout the day:
Use the declarative approach when it is sufficient; otherwise, use the programmatic approach for business rules.
Component developers should neither implement security mechanisms nor hard-code security policies in the EJBís business methods. Rather, developers should rely on the security mechanisms provided by the container, and should let the application assembler and deployer define the appropriate security policies for the application.
Use encryption (SSL and digital certificates) to secure sensitive data such as passwords and credit-card numbers.
Use auditing, filtering, and monitoring of your enterprise applications to prevent any security breaches. ...
Get Sams Teach Yourself EJB in 21 Days now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
