This is the first book to focus on design
patterns for implementing application security in
J2EE and Web Services. It attempts to cover the broad spectrum of securing enterprise apps with a focus on developers. Unlike many other books that include chapters on security, this book focuses on it and takes you through the basics all the way to baking security into an application from the ground up with best practices, pitfalls, and reality checks. It is not a theoretical book, it goes into the real world challenges associated with building secure applications.