Further Information about Security

For more information about security in Java EE applications, see:

• Java EE 6 Specification:

  http://jcp.org/en/jsr/detail?id=316

• The Sun GlassFish Enterprise Server v3 Application Development Guide includes security information for application developers.

• The Sun GlassFish Enterprise Server v3 Administration Guide includes information on setting security settings for the Enterprise Server.

• The Sun GlassFish Enterprise Server v3 Application Deployment Guide includes information on security settings in the deployment descriptors specific to the Enterprise Server.

• EJB 3.1 Specification (JSR-318):

  http://jcp.org/en/jsr/detail?id=318

• Implementing Enterprise Web Services 1.3 (JSR-109):

  http://jcp.org/en/jsr/detail?id=109

• Java Platform, Standard Edition 6 security information:

  http://java.sun.com/javase/6/docs/technotes/guides/security/

• Java Servlet Specification, Version 3.0:

  http://jcp.org/en/jsr/detail?id=315

• JSR 181: Web Services Metadata for the Java Platform:

  http://jcp.org/en/jsr/detail?id=181

• JSR 250: Common Annotations for the Java Platform:

  http://jcp.org/en/jsr/detail?id=250

• The Java SE discussion of annotations:

  http://java.sun.com/javase/6/docs/technotes/guides/language/annotations.html

• JSR 115: Java Authorization Contract for Containers 1.3:

  http://jcp.org/en/jsr/detail?id=115

• Chapter 24 of the CORBA/IIOP specification, Secure Interoperability:

  http://www.omg.org/cgi-bin/doc?formal/02-06-60

• Java Authentication and Authorization Service (JAAS) in Java Platform, Standard Edition:

  http://java.sun.com/developer/technicalArticles/Security/jaasv2/index.html

• Java Authentication and Authorization Service (JAAS) Reference Guide:

  http://java.sun.com/javase/6/docs/technotes/guides/security/jaas/JAASRefGuide.html

• Java Authentication and Authorization Service (JAAS): LoginModule Developer’s Guide:

  http://java.sun.com/javase/6/docs/technotes/guides/security/jaas/JAASLMDevGuide.html