Goals
- Know the security risks of a site made with JEE
- Know how to set up and maintain the security of a JEE application
Program
Theoretical needs
Safety policy
Risk assessment
General methods
JDK
JVM tools Compile
Cycle
Process
Memory
Parameters
Monitoring software
Java
security JVM security under Java
SecurityManager
Access rights of an applet
Hash
Encryption
Asymmetric encryption
Bouncy Castle
Definition
Security provider
Definition
Use
Need
Digital signature
Certificates
Example X509
Extraction from the
JarSigner keystore
Principle
Obfuscation techniques
Commercial solutions
JAAS presentation
Definitions
Operation
JAAS
WEB and EJB security
Securing a WEB application
Securing an EJB
Presentation
The notion of cluster
Level 7 routing
Example with Apache front-end
Concept of distributed sessions and replicated sessions
Example with a cluster of Tomcat servers
Replication of EJBs in cluster mode.
Duration
2 days
Price
£ 1275
Audience
All
Prerequisites
Knowledge of Java, notions of JEE
Reference
JAV138-F
Sessions
Contact us for more informations about session date