The Java 2 Standard Edition discussion of security can be viewed from http://java.sun.com/j2se/1.4.2/docs/guide/security/index.html.
The J2EE 1.4 Tutorial chapter titled Security can be viewed from http://java.sun.com/j2ee/1.4/docs/tutorial/doc/index.html.
The Administration Guide chapter titled Chapter 9, Configuring Security.
The Developer’s Guide chapter titled Securing Applications.
The Oasis Web Services Security: SOAP Message Security (WS-Security) specification, can be viewed from http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0.pdf.
The OASIS Web Services Security Username Token Profile 1.0, can be found at http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0.pdf.
The OASIS Web Services Security X.509 Certificate Token Profile 1.0, can be found at http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0.pdf.
The XML-Signature Syntax and Processing document can be viewed at http://www.w3.org/TR/xmldsig-core/.
The XML Encryption Syntax and Processing document can be viewed at http://www.w3.org/TR/xmlenc-core/.