Product DescriptionWritten in the same exciting and informative style as the international blockbuster Hacking Exposed, this book provides comprehensive coverage of the tools and techniques for testing and correcting J2EE and Java security issues. Includes examples of J2EE attacks and countermeasures, risk ratings throughout the chapters and case studies.
Customer Reviews
Average Rating:
Rating: - Good book, with reservations
This book has some nice examples and is fairly complete, but some sections are basically a regurgitation of the java.sun web site! In many technical books, it is common to find multiple authors, each writing a section based upon his/her expertise. Since each author has a specific writing style and personality, there is usually a person (or persons) charged with proofing and approving the sections as well as working to make the transitions seamless and consistent. This book was written ... Read More
Rating: - Comprehensive Java Security Book
This is a very good book on java security that starts pretty much from the ground up so you have to know much about security to read it. The first part of the book starts out with some of the java security basics (classloading, protection domains, etc.) and then goes through the JAAS, JCE, and JSSE modules.
The second part of the book goes through how to use security in stand alone java applications and what pitfalls you need to watch out for. The book also details where security ... Read More
Rating: - Not a Hacking Exposed book at all
If this book had been titled differently, I would have had no
reason for complaint: it gives a good introduction to Java
Security, and how to deploy it in various forms.
But it *is* titled 'Hacking Exposed'. That is now taken
to be an indication of a particular approach to security,
... The blurb acknowledges it: 'The proven Hacking Exposed
methodology' is the first thing mentioned under 'What You Learn'.
And I bought this title without second thought ... Read More
Rating: - Security for advanced Java developers
The book uses an example Java application which is intially very unsecure, and throughout the book the vulnerabilities of the example are discussed and countermeasures are written. Then the application is webenabled, creating new vulnerabilities which are fixed again, and so on. This way the complex material is covered in an easy accessible yet comprehensive way, without becoming lengthy. This book is a must have for any serious Java web developer interested in application security. Not recommended for beginners, ... Read More
Rating: - Real Help for J2EE Programmers
This is one of the best books I've read on J2EE security. The recommendations in this book improved my exisiting production applications and development designs.
- Good book, with reservations
- Comprehensive Java Security Book
- Not a Hacking Exposed book at all
