Java Security

One of Java's most striking claims is its provision of a secure programming environment. However, many people struggle to understand the specifics of these claims and how they are supported. For developers, network administrators, and others working with Java's security mechanisms, this book offers an in-depth exploration of the subject. Focusing on the core platform features that provide security—such as the class loader, bytecode verifier, and security manager—this edition also addresses recent enhancements to Java's security model, including digital signatures, security providers, and the access controller. It covers the security model of Java 2, Version 1.3, which differs significantly from that of Java 1.1, and includes extensive information on two crucial security APIs: JAAS (Java Authentication and Authorization Service) and JSSE (Java Secure Sockets Extension). This resource will clarify the architecture of Java's security model and its application in programming and administration. While primarily aimed at programmers looking to create secure Java applications, it also serves as a valuable reference for system and network administrators assessing the risks of using Java and determining whether it meets their security requirements.