Site Course Catalog  
Course Catalog Public Schedule Services Resources News & Events About Us
Course Catalog
 
Process and
Methods
Java / J2EE
Web Services / XML
WebSphere
WebLogic
.NET
Rational / XDE
Other
100% MONEY BACK WARRANTEE
Featured Courses
Registration FAQ
Client Testimonials
Public Schedule
Promos & Offers
Download Course
Catalog PDF Format

 
 
Building Secure Applications in Java
Duration: 2 days
Audience Prerequisites
  • Application developers
  • Programmers
  • System designers
 Experience with the Java programming language is required.
Description
This intensive, hands-on course covers the development of secure programs for the Enteprise using the Java 1.2 security framework. The Java 1.2 security model is policy-based configurable and extensible. It allows the users to specify a fine-granular access control for users, groups and resources. This course offers a comprehensive coverage of the Security API and the issues in the design and development of applications that exercise fine-grained access of system resources. Other topics covered include Public Key Cryptography, Data Encryption, Digital Signatures, Digital Certificates and Authentication. System security issues such as Firewall are introduced within the context of a multi-tiered application environment.

Participants also get extensive experience with the three security related tools, PolicyTool, KeyTool and JAR signer while developing applications and applets in the class. The course exercises have been created so that they can be applied as solution templates for the everyday work of developers.

The course consists of 50% instruction and 50% lab exercises.
Objectives
This course teaches you how to use the Java 1.2 security model to bypass the default "sandbox" restrictions of the Java System while building Java Applets. It also teaches you how to digitally sign your applets, set the security policies for your enterprise, authenticate foreign applets and execute them in a secure fashion. In this class users would develop applets that access resources that have been made available to the signer of the applet - access to resources that the default "sandbox" based SecurityManager would have disallowed. Security configurations of various browsers (e.g. Netscape, Internet Explorer etc.) are also covered. On completion, attendees will be able to:
  • Set the security policies for the enterprise using the PolicyTool
  • Develop Java applets and applications using the new security API to access system resources, which were formerly denied to Java applets, in a fine granular fashion.
  • Digitally sign the applets
  • Create digital certificates
  • Implement flexible, maintainable and secure solutions
Course Outline
Fundamentals of Crytography
  • Public Key Cryptography
  • Digital Signatures
  • Message Digest
  • Digital Certificates (X.509)
  • Authentication
Security API in Java
  • Sandbox model
  • Security Manager
  • Policy
  • Permissions
  • Domains
  • Java Crytography Extension (JCE)
 Security Tools
  • Policy Tool - To create and modify the policy configuration files of the enterprise
  • Key Tool - To create pairs of puclic and private keys, to import and display certificate chains, to create and export certificates and to send certificate requests.
  • Jar Signer - To digitally sign the archive (JAR) files and to authenticate signatures of JAR files.
 
11149 Research Blvd., Suite 350, Austin, TX 78759 | 512.306.8225 Site Map | © 2005 InferData, Ltd.