| Author |
A Question to Chris and Ramesh
|
Lester D Jones
Greenhorn
Joined: Mar 01, 2005
Posts: 15
|
|
What would you consider the key issues in security for J2ME applications?
I have been using Bouncy Castle for a while and I am satisfied with the results. Are there any other APIs worth looking into?
thanks for the contribution to the community
LDJ
|
 |
Ajith George
Ranch Hand
Joined: Dec 22, 2005
Posts: 109
|
|
What ever Security patterns we implement in SOA type architecture, the key data transfer is done via XML or something similar, which are easy to understand and moreover no decoding is required. What you think of this problem?? Any solution??
Actualy i was not concerned about this security issue earlier, thats why i am asking.....
|
SCJP 1.4, Brainbench
LinkedIn - Blog
|
|
Ramesh Nagappan
Author
Ranch Hand
Joined: May 06, 2003
Posts: 159
|
|
Originally posted by Lester D Jones:
What would you consider the key issues in security for J2ME applications?
I have been using Bouncy Castle for a while and I am satisfied with the results. Are there any other APIs worth looking into?
thanks for the contribution to the community
LDJ
In our book, we do address the security issues and requirements related to J2ME devices...and explain them in terms of using - securing MIDlets, Trusted MIDlets and then how to use cryptography in J2ME. In the J2EE security architecture, we also discuss on how to use secure J2ME clients using MIDP 2.0 for invoking J2EE applications (using WTLS).
BouncyCastle does work well in light-weight environments including J2ME. I don't want to distinguish differences and give my biased opinions.
[ January 11, 2006: Message edited by: Ramesh Nagappan ]
|
Ramesh Nagappan CISSP<br />Co-Author of "Core Security Patterns"<br />nramesh@post.harvard.edu<br /><a href="http://www.coresecuritypatterns.com" target="_blank" rel="nofollow">www.coresecuritypatterns.com</a>
|
|
 |
|
|
subject: A Question to Chris and Ramesh
|
|
|
0
