aspose file tools*
The moose likes Security and the fly likes j2ee enabled security app in an  enterprise Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of EJB 3 in Action this week in the EJB and other Java EE Technologies forum!
JavaRanch » Java Forums » Engineering » Security
Bookmark "j2ee enabled security app in an  enterprise " Watch "j2ee enabled security app in an  enterprise " New topic
Author

j2ee enabled security app in an enterprise

Karthik Guru
Ranch Hand

Joined: Mar 06, 2001
Posts: 1209
Does j2ee security interact well with other systems in the enterprise?
especally in the area enterprise app integration. For eg if we deploy a complete j2ee solution in an enterprise , does it integrate well with the security features of other systems? Any experience / thoughts?
Do third party SSO products take care of this integration?
Nicholas Cheung
Ranch Hand

Joined: Nov 07, 2003
Posts: 4982
You need to have the same type, or at least compatiable type of APIs, if the security is not assured by the containers, or Web browser.
4 years ago, I worked for a project that migrate the financial transaction server with the COBRA gateway server. We need to perform server-to-server authentication, and thus, both server has its own public/private key pair.
However, the key generated for FTS uses Java, while that of COBRA gateway server is generated uses C. We found that the Java library cannot converted the byte[] of the key into Java Keystore.
And finally, we need to use native library method to import the key for encryption.
I guess nowadays will be better, as people put more concerns on system integration and interoperability. But I have not recent experiences on this area.
Nick


SCJP 1.2, OCP 9i DBA, SCWCD 1.3, SCJP 1.4 (SAI), SCJD 1.4, SCWCD 1.4 (Beta), ICED (IBM 287, IBM 484, IBM 486), SCMAD 1.0 (Beta), SCBCD 1.3, ICSD (IBM 288), ICDBA (IBM 700, IBM 701), SCDJWS, ICSD (IBM 348), OCP 10g DBA (Beta), SCJP 5.0 (Beta), SCJA 1.0 (Beta), MCP(70-270), SCBCD 5.0 (Beta), SCJP 6.0, SCEA for JEE5 (in progress)
Pradeep bhatt
Ranch Hand

Joined: Feb 27, 2002
Posts: 8898

For eg if we deploy a complete j2ee solution in an enterprise , does it integrate well with the security features of other systems?

Could you explain what do you mean by other system?


Groovy
Nicholas Cheung
Ranch Hand

Joined: Nov 07, 2003
Posts: 4982
I guess he means systems that are developed by other programming languages, like C++ or .NET, or some legacy systems which connected via EIS, etc.
Nick
 
I agree. Here's the link: http://aspose.com/file-tools
 
subject: j2ee enabled security app in an enterprise
 
Similar Threads
High Assurance Design vs Design Patterns for J2EE and Security?
Java Connectors/ MQ series/Tuxedo etc
iPlanet web server compatible w/. MQ Series
Android in Action - Questions
login example using jsf