Quantity:

Express Checkout with PayPhrase

What's this? | Create PayPhrase

More Buying Choices

39 used & new from $3.98

Have one to sell? Sell yours here

Share with Friends

J2EE Security for Servlets, EJBs, and Web Services

See larger image

Share your own customer images

Publisher: learn how customers can search inside this book.

Tell the Publisher! I�d like to read this book on Kindle Don�t have a Kindle? Get your Kindle here.

J2EE Security for Servlets, EJBs, and Web Services (Paperback)

~ (Author)

3.6 out of 5 stars See all reviews (21 customer reviews)

List Price:	$49.99
Price:	$34.21 & this item ships for FREE with Super Saver Shipping. Details
You Save:	$15.78 (32%)
	o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o

In Stock.
Ships from and sold by Amazon.com. Gift-wrap available.

Only 1 left in stock--order soon (more on the way).

Want it delivered Tuesday, November 10? Choose One-Day Shipping at checkout. Details

20 new from $22.61 19 used from $3.98

Frequently Bought Together

Customers Who Bought This Item Also Bought

Java Soa Cookbook

by Eben Hewitt

5.0 out of 5 stars (5) $31.49

Spring in Action

by Craig Walls

4.1 out of 5 stars (67) $31.49

Pro EJB 3: Java Persistence API

by Mike Keith

4.5 out of 5 stars (19) $38.46

Enterprise Java(TM) Security: Building Secure J2EE(TM) Applications

by Marco Pistoia

3.6 out of 5 stars (15) $44.40

Java Persistence with Hibernate

by Christian Bauer

3.6 out of 5 stars (63) $37.79

› Explore similar items

Editorial Reviews

Product Description

Dealing with security issues continues to be challenging for programmers and developers. In this book, expert practitioner Pankaj Kumar walks through both the descriptions and resolutions of those security issues that Java professionals will run into while designing, building, deploying and operating solutions that use J2EE technologies - such as Servlets, EJBs and Web Services. Unlike most books on security, Kumar covers security concepts such as authentication, authorization, confidentiality, integrity and non-repudiation in the context of security standards, Java APIs and software products implementing these technologies, while demonstrating how to use these in creating solutions.

From the Back Cover

J2EE developers have an extraordinary array of powerful options for securing their Web services, Web applications, EJB components and RMI objects. Now, expert Java architect Pankaj Kumar helps developers make sense of Java's increasingly rich security APIs, tools, patterns, and best practices-showing how to use each of them in the right place, at the right time, and in the right way.

Kumar covers every significant J2SE and J2EE security mechanism, presenting practical implementation techniques for the entire J2EE project lifecycle: analysis, design, development, deployment and operations. The book's example-rich coverage includes:

Implementing cryptography with the JCA (Java Cryptography Architecture) and JCE (Java Cryptography Extension) security APIs
Building PKI systems with Java: implementing X.509 certificates, Certification Authorities, Certificate Revocation Lists, and repositories
Java security managers, policy files, and JAAS: implementing access control based on code origin, code signer and user credentials
Securing the wire: Using SSL and the JSSE API to secure data exchange over unprotected networks
Ensuring XML message integrity, authentication, and confidentiality with the standards: XML Signature & XML Encryption using the VeriSign TSIK, and Infomosaic SecureXML libraries
Addressing security issues in RMI-based distributed applications
Developing and deploying servlets and EJBs for authenticated and secure access
Securing Web services with transport- and message-based security: SSL for transport-based and WS Security for message-based security
Covering security aspects of best-of-breed products: Apache Tomcat, Apache Axis, and BEA WebLogic Server.

See all Editorial Reviews

Product Details

Paperback: 464 pages
Publisher: Prentice Hall PTR (September 14, 2003)
Language: English
ISBN-10: 0131402641
ISBN-13: 978-0131402645
Product Dimensions: 9.1 x 7 x 1.2 inches
Shipping Weight: 1.6 pounds (View shipping rates and policies)

Average Customer Review: 3.6 out of 5 stars See all reviews (21 customer reviews)

Amazon.com Sales Rank: #1,063,172 in Books (See Bestsellers in Books)

Would you like to update product info or give feedback on images?

More About the Author

Discover books, learn about writers, read author blogs, and more.

› Visit Amazon's Pankaj Kumar Page

What Do Customers Ultimately Buy After Viewing This Item?

	61% buy the item featured on this page: J2EE Security for Servlets, EJBs, and Web Services 3.6 out of 5 stars (21) $34.21
	16% buy Enterprise Java(TM) Security: Building Secure J2EE(TM) Applications 3.6 out of 5 stars (15) $44.40
	16% buy Core Security Patterns: Best Practices and Strategies for J2EE(TM), Web Services, and Identity Management 4.7 out of 5 stars (31) $44.09
	6% buy J2EE Web Services: XML SOAP WSDL UDDI WS-I JAX-RPC JAXR SAAJ JAXP 3.9 out of 5 stars (32) $44.09

Explore similar items

Suggested Tags from Similar Products

(What's this?)

Be the first one to add a relevant tag (keyword that's strongly related to this product).

concurrency(42)

java(118)

programming(30)

patterns(28)

threads(25)

j2ee(25)

scjp(21)

best practices(18)

security(19)

java certification(17)

servlets(14)

Sell a Digital Version of This Book in the Kindle Store

If you are a publisher or author and hold the digital rights to a book, you can sell a digital version of it in our Kindle Store. Learn more

Customer Reviews

21 Reviews

5 star:		(8)
4 star:		(6)
3 star:		(0)
2 star:		(4)
1 star:		(3)

Average Customer Review

3.6 out of 5 stars (21 customer reviews)

Share your thoughts with other customers:

Create your own review

Most Helpful Customer Reviews

10 of 10 people found the following review helpful:

2.0 out of 5 stars Shallow on J2EE security !, December 29, 2003

By	Prasad Reddy "Prasad" (Sanjose, CA) - See all my reviews

I was quite disappointed in this book, which is both drawn-out and shallow in its coverage of j2ee and web services. With 425 pages (11 chapters), the book only talks about J2EE component security in 2 chapters (Chapter 9 and 10) and stops at high-level with spending pages on configuring tomcat and weblogic 7. The author comfortably skipped discussing content over complex issues and finally completely forgot about illustrating real-world security issues and measures.
Although the book covers some very basic aspects of Java security, ultimately it provides a dreary drawn-out overview of j2ee security which is better found more in google and elsewhere.

Comment Comment | Permalink | Was this review helpful to you? Yes No (Report this)

7 of 7 people found the following review helpful:

2.0 out of 5 stars A little bit of everything, April 30, 2004

By	"genka_v" (Malden, MA United States) - See all my reviews

The title is, definitely, misleading: it does not cover the subject of J2EE security. One cannot build a secure application with this book! There are lots of great books on the Standard Edition security, and there is no need to go over it again, particularly when J2EE presents so many new issues and problems one needs to take care in order to build a commercial application. Otherwise the book is easy to read and understand.

Comment Comment | Permalink | Was this review helpful to you? Yes No (Report this)

6 of 6 people found the following review helpful:

1.0 out of 5 stars Book needs a revision., January 25, 2006

By	Paul Lopez "Paul" (Tucson, AZ) - See all my reviews

This book is similiar to sun java security tutorial with little additions specific to weblogic 7.0 and apache axis 1.0. The code examples don't run on j2ee 1.4 platform. The book also needs a new edition with revised examples to include newer security mechanisms with j2se 1.5. Except for chapter 1 - A Security primer, all other chapters are technically obsolete.

If you wish to pick a good alternative book, choose Core Security Patterns by Chris Steel et all - that is the best book I have seen for Java security.

Comment Comment | Permalink | Was this review helpful to you? Yes No (Report this)

Share your thoughts with other customers: Create your own review

› See all 21 customer reviews...

Most Recent Customer Reviews

4.0 out of 5 stars Its greatest strength is also its greatest weakness
Pankaj Kumar definitely deserves an "A for effort". As in other material of his I've read he makes security concepts accessible and easy to understand. Read more

Published on October 1, 2005 by Vance Christiaanse

5.0 out of 5 stars Excellent and comprehensive book on J2EE security
This is one the best books that I have ever read. The writing is very lucid and the author explains concepts in very clear and easy to understand manner. Read more

Published on March 21, 2004 by a_cpp

5.0 out of 5 stars Excellent primer on security!
This book is an excellent compilation of security concepts explained in simple terms and with lots of well illustrative example code. Read more

Published on January 8, 2004

1.0 out of 5 stars Waste of money
Be careful when you buy this book. The book has no concrete focus on J2EE or J2SE of any sort and it is pretty much INCOMPLETE. Read more

Published on December 23, 2003

2.0 out of 5 stars Misleading title and incomplete book
This book is a "Hello World" to basic security...beyond that nothing more. Practically speaking, you would not able to implement a complete security architecture by... Read more

Published on December 13, 2003 by Craig Anderson

4.0 out of 5 stars Nicely Up To Date on a Vital Issue
If J2EE containers are to be used for commercial web applications, then a built in means of securely encrypting and decrypting traffic is essential. Read more

Published on October 29, 2003 by W Boudville

4.0 out of 5 stars Good Concepts and Broad Coverage of Security Concepts
First the things that I really liked about the book
- Provides a very good overview along with some fabulous code samples. I am not beginner with Java .. Read more

Published on October 27, 2003 by Satadip Dutta

5.0 out of 5 stars Great Introduction to Security Concepts and Solutions
Kumar's book is a straightforward introduction to web security that covers a broad area. This is an ideal book for anyone new to security and trying to understand the breadth of... Read more

Published on October 24, 2003 by Robert W Husted

5.0 out of 5 stars The Best Java Security Book on the market!
In my opinion, this book is the best Java Security book that is available today. I personally own Java Cryptography (Oreilly), Professional Java Security (Wrox), and Java Security... Read more

Published on October 21, 2003 by Bruce Hopkins

1.0 out of 5 stars Disappointing !
I am not new to J2EE, but I purchased this book for understanding J2EE security based on the good reviews it has received. Read more

Published on October 13, 2003 by Victor Jenkins

› See all 21 customer reviews...

.jsOffDisplayBlock { display: block; } .jsOffDisplayInline { display: inline; } .jsOffVisibility { visibility: visible; } .jsOnDisplayBlock { display: none; } .jsOnDisplayNoneBlock { display: block; } .jsOnDisplayNoneInline { display: inline; } .jsOnDisplayInline { display: none; } .jsOnVisibility { visibility: hidden; } .jqOnDisplayBlock { display: none; } .jqOnDisplayInline { display: none; } .jqOnVisibility { visibility: hidden; } .jqOnDisplayNoneBlock { display: block; } .jqOnDisplayNoneInline { display: inline; }