Download Java SE Security

Survey
yes no Was this document useful for you?
   Thank you for your participation!

* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project

page
1
page
2
page
3
page
4
page
5
page
6
Document related concepts
no text concepts found
Transcript 
Java SE Security
1. Platform Security
• Provides a safe and secure platform for developing and
running applications.
• Compile-time data type checking and automatic memory
management leads to more robust code and reduces memory
corruption and vulnerabilities.
• Bytecode verification ensures code conforms to the JVM
specification and prevents hostile code from corrupting the
runtime environment.
2. Cryptography
• Comprehensive API with support for a wide range of
cryptographic services including digital signatures.
• PKCS#11 cryptographic token support
• Provides an extensible, full featured API for building secure
applications:
– Algorithm and implementation independent.
– Java Cryptography Architecture(JCA) (includes the Java Cryptographic
Extension (JCE)).
3. Authentication and Access Control
• A comprehensive policy and permissions API that allows the
developer to create and administer applications requiring
fine-grained access to security-sensitive resources.
• Enables single sign-on of multiple authentication mechanisms
and fine-grained access to resources based on the identity of
the user or code signer. Recent support (in JDK 5) for
timestamped signatures makes it easier to deploy signed code
by avoiding the need to re-sign code when the signer's
certificate expires.
4. Secure Communications
• APIs and implementations for the following standardsbased secure communications protocols: Transport
Layer Security (TLS) and the Simple Authentication and
Security Layer (SASL). Full support for HTTPS over
SSL/TLS is also included.
• Authenticates peers over an untrusted network and
protects the integrity and privacy of data transmitted
between them.
5. Public Key Infrastructure (PKI)
• Tools for managing keys and certificates and
comprehensive.
• Eases the development and deployment of complex
PKI applications. Recent support (in JDK 5) for OCSP
provides a more scalable and timely method for
applications to check certificate revocation status.
Related documents
Chapter 9 Question 4 a. A file server device operates on individual
Chapter 9 Question 4 a. A file server device operates on individual
Lecture 4
Lecture 4
The Java Class Library
The Java Class Library
A communications model
A communications model
Java Development Kit and Installation Instructions for
Java Development Kit and Installation Instructions for
ECSP – EC-Council Certified Secure Programmer
ECSP – EC-Council Certified Secure Programmer
Malicious Cryptography : Exposing Cryptovirology
Malicious Cryptography : Exposing Cryptovirology
Reflection
Reflection
Installation_Instructions
Installation_Instructions
A Java Environment for High-Performance Computing
A Java Environment for High-Performance Computing
Document
Document
Java QUIZ
Java QUIZ