|
 |
All orders
shipped by
airmail!
Click here for our
Shipping Policies!
| |
 | | |
"Immortality. I notice that as soon as writers broach this question they begin to quote. I hate quotation. Tell me what you know."
- Ralph Waldo Emerson
(1803 - 1882),
Journal
(May 1849)
| | | |
|
ZIN Product Number: 10161077
| eBay (last 12 months) | | Auctions: | | 62 | | Price Range: | | $0.05 - 0.06 | | | | Craigslist (last 12 months) | | Classifieds: | | 12 | | Price Range: | | $0.01 - 0.07 | | | | Amazon Used (last 12 months) | | Auctions: | | 64 | | Price Range: | | $0.06 - 0.05 | | | | ZooScape (last 12 months) | | Auctions: | | 0 | | Price Range: | | N/A | | | | | | Google listings (non-affiliate) | | 90 | | MSN listings (non-affiliate) | | 39 | | Yahoo listings (non-affiliate) | | 45 | | |
| | 
| | | |  | | | Product Details
 Format: Paperback, 2nd ed., 576 pages
Edition: 2ND
Publisher: O'Reilly & Associates, Incorporated
ISBN: 0596001576
Release Date: Jan 5, 2001
| |  | | | In Brief
One of Java's most striking claims is that it provides a secure programming environment. Yet despite endless discussion, few people understand precisely what Java's claims mean and how it backs up those claims. If you're a developer, network administrator or anyone else who must understand or work with Java's security mechanisms, Java Security is the in-depth exploration you need.
Java Security, 2nd Edition, focuses on the basic platform features of Java that provide security--the class loader, the bytecode verifier, and the security manager--and recent additions to Java that enhance this security model: digital signatures, security providers, and the access controller. The book covers the security model of Java 2, Version 1.3, which is significantly different from that of Java 1.1. It has extensive coverage of the two new important security APIs: JAAS (Java Authentication and Authorization Service) and JSSE (Java Secure Sockets Extension). Java Security, 2nd Edition, will give you a clear understanding of the architecture of Java's security model and how to use that model in both programming and administration.
The book is intended primarily for programmers who want to write secure Java applications. However, it is also an excellent resource for system and network administrators who are interested in Java security, particularly those who are interested in assessing the risk of using Java and need to understand how the security model works in order to assess whether or not Java meets their security needs.
| | | | From The Publisher
Java's most striking claim is that it provides a secure programming environment. However, despite lots of discussion, few people understand precisely what Java's claims mean and how it backs up those claims. Java Security is an in-depth exploration aimed at developers, network administrators, and anyone who needs to work with or understand Java's security mechanisms. It discusses in detail what security does and doesn't mean, what Java's default security policies are, and how to create and implement your own policies.
In doing so, Java Security provides detailed coverage of security managers, class loaders, the access controller, and much of the java.security package. It discusses message digests, certificates, and digital signatures, showing you how to use Java's facilities for signing classes or to implement your own signature facility. It shows you how to write a class loader that recognizes signed classes, verifies the signature, and cooperates with a security manager to grant additional privileges. It also discusses the problem of managing cryptographic keys and shows you how to implement your own key management systems.
Java Security is an essential book for everyone using Java in real-world software. If you're deploying software written in Java, you need to know how to grant your classes the privileges they need, without granting privileges to untrusted classes. You need to know how to protect your systems against intrusion and corruption. Java provides the tools; this book shows you how to use them.
| |  | | |
 | | | | | Be the first to rate this book! Number of Reviews: 0
| | | |  | | | | Preface | xi | | 1. | Java Application Security | 1 | | What Is Security? | 1 | | Software Used in This Book | 4 | | The Java Sandbox | 10 | | Security Debugging | 15 | | Summary | 17 | | 2. | The Default Sandbox | 18 | | Elements of the Java Sandbox | 18 | | Permissions | 20 | | Keystores | 32 | | Code Sources | 32 | | Policy Files | 33 | | The Default Sandbox | 38 | | The java.security File | 41 | | Comparison with Previous Releases | 41 | | Summary | 42 | | 3. | Java Language Security | 43 | | Java Language Security Constructs | 44 | | Enforcement of the Java Language Rules | 50 | | Comparisons with Previous Releases | 56 | | Summary | 57 | | 4. | The Security Manager | 58 | | Overview of the Security Manager | 59 | | Operating on the Security Manager | 64 | | Methods of the Security Manager | 65 | | Comparison with Previous Releases | 80 | | Summary | 82 | | 5. | The Access Controller | 84 | | The CodeSource Class | 85 | | Permissions | 86 | | The Policy Class | 98 | | Protection Domains | 101 | | The AccessController Class | 102 | | Guarded Objects | 109 | | Comparison with Previous Releases | 110 | | Summary | 111 | | 6. | Java Class Loaders | 112 | | The Class Loader and Namespaces | 112 | | Class Loading Architecture | 115 | | Implementing a Class Loader | 117 | | Miscellaneous Class Loading Topics | 127 | | Comparison with Previous Releases | 129 | | Summary | 130 | | 7. | Introduction to Cryptography | 131 | | The Need for Authentication | 132 | | The Role of Authentication | 137 | | Cryptographic Engines | 138 | | Summary | 144 | | 8. | Security Providers | 146 | | The Architecture of Security Providers | 146 | | The Provider Class | 152 | | The Security Class | 158 | | The Architecture of Engine Classes | 163 | | Comparison with Previous Releases | 164 | | Summary | 164 | | 9. | Keys and Certificates | 166 | | Keys | 167 | | Generating Keys | 172 | | Key Factories | 181 | | Certificates | 189 | | Keys, Certificates, and Object Serialization | 202 | | Comparison with Previous Releases | 203 | | Summary | 204 | | 10. | Key Management | 205 | | Key Management Terms | 206 | | The keytool | 209 | | The Key Management API | 221 | | A Key Management Example | 228 | | Secret Key Management | 234 | | Comparison with Previous Releases | 241 | | Summary | 243 | | 11. | Message Digests | 244 | | Using the Message Digest Class | 244 | | Secure Message Digests | 248 | | Message Digest Streams | 251 | | Implementing a MessageDigest Class | 255 | | Comparison with Previous Releases | 260 | | Summary | 260 | | 12. | Digital Signatures | 261 | | The Signature Class | 261 | | Signed Classes | 272 | | Implementing a Signature Class | 281 | | Comparison with Previous Releases | 286 | | Summary | 287 | | 13. | Cipher-Based Encryption | 288 | | The Cipher Engine | 288 | | Cipher Streams | 305 | | Sealed Objects | 309 | | Comparison with Previous Releases | 310 | | Summary | 310 | | 14. | SSL and HTTPS | 311 | | An Overview of SSL and JSSE | 311 | | SSL Client and Server Sockets | 321 | | SSL Sessions | 324 | | SSL Contexts and Key Managers | 327 | | Miscellaneous SSL Issues | 337 | | The HTTPS Protocol Handler | 341 | | Debugging JSSE | 344 | | Summary | 345 | | 15. | Authentication and Authorization | 346 | | JAAS Overview | 347 | | Simple JAAS programming | 349 | | Simple JAAS Administration | 352 | | Advanced JAAS Topics | 362 | | Summary | 378 | | A. | The Java.security File | 379 | | B. | Security Resources | 382 | | C. | Identity-Based Key Management | 392 | | D. | The Secure Java Container | 420 | | E. | Implementing a JCE Security Provider | 450 | | F. | Quick Reference | 458 | | Index | 567 |
| |  | | | Find similiar books in these subject areas:
All Topics > Computers & Internet > Programming > General
All Topics > Computers & Internet > Programming > Java > General
All Topics > Computers & Internet > Digital Business & Culture > Project Management > Security
| | | | People like you also bought:
Enterprise JavaBeans, by Richard Monson-Haefel
Java & XML, by Brett McLaughlin
Unknown Title
Effective Java Programming Language Guide, by Josh Bloch
Java and XSLT, by Eric M. Burke
Java Servlet Programming, by
Java Network Programming, Second Edition, by Rusty Harold
Java Cookbook, by Ian F. Darwin
Java Message Service, by Richard Monson-Haefel
Unknown Title
| | | | | | Keywords
Java (Computer program languag, Computer security, Computer Bks - Languages / Programming, Computers, Programming Languages - Java, Security, Programming Languages - General, Computer security, Java (Computer program language), Java (Computer program languag, Computer security, Computer Bks - Languages / Programming, Computers, Programming Languages - Java, Security, Programming Languages - General
| |
| |
| | | |
Make $1 per sale -
Link to ZooScape.com! | |
