Enterprise Java Security: Building Secure J2EE Applications

click here for more details, find new or used items	Marco Pistoia, Nataraj Nagaratnam, Larry Koved, Anthony Nadalin Our price £36.09 (£37.99) New from £30.40 Used from £8.57 Pages: 608 (Paperback) ISBN: 0321118898 Pub: Addison Wesley Pub date: 2004-03-11 Amazon.co.uk Sales Rank: 199795

Reader Reviews:

Needs more code samples (1/1 people found this helpful)

This book is a nice, general, "white paper" type overview of security inJava. The authors demonstrate a good, solid understanding of J2EEsecurity. However, they don't provide enough in the way of actualimplementation examples. I feel this is a major shortcoming of thebook.
The book starts with a general overview of security and thenmoves on to using applets with RMI through a firewall. The next sectiondeals with Servlets, JSP, and EJB security and shows us some deploymentdescriptors and a few code samples but not enough to get a firm grasp onhow to implement security. Part 3 discusses the basics of Java security.Part 4 discusses cryptography. The final part discusses advanced topicsincluding a way too brief chapter on web services.
In general the book spends too much space discussing security topics andnot nearly enough space demonstrating how to use the information provided.The book tends to be too technical in ways that are generally notinteresting to Java developers. For example, does a developer really needthis: "One straightforward application of the one-way function to DH is tohave two entities to publicly agree on a point P on an elliptic curve Eover a finite field, where p is a very large prime number."
I think this book may be very useful in combination with another book thatis much more example driven, "J2EE Security for Servlets, EJBs, and WebServices" by Pankaj Kumar.

Categories

Amazon.co.uk places this book into the following categories: