This week's giveaway is in the Android forum.
We're giving away four copies of Android Security Essentials Live Lessons and have Godfrey Nolan on-line!
See this thread for details.
The moose likes JBoss/WildFly and the fly likes PCI/Security for JBoss? Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of Android Security Essentials Live Lessons this week in the Android forum!
JavaRanch » Java Forums » Products » JBoss/WildFly
Bookmark "PCI/Security for JBoss?" Watch "PCI/Security for JBoss?" New topic
Author

PCI/Security for JBoss?

Jimmy Ho
Ranch Hand

Joined: Jul 31, 2007
Posts: 61

I'm looking to put in a simple web application on JBoss, and the JBoss instance sits on a server with PCI information (credit cards, etc) and possibly PII (SSN's, etc.). This can't be helped. It's unclear at this point if any of the applications we will be writing will directly access this sensitive data, or if we're merely trying to protect the overall server.

Does JBoss have an known issues with security or PCI compliance? Is there an app server that lends itself better to PCI? Anyone have any links to prior discussions in this forum or some whitepapers somewhere?

Architecturally, we want to stick with JBoss because we've already purchased it for other uses, but if the reasons are compelling, it may be worth investigating an alternative.

Thanks!
 
It is sorta covered in the JavaRanch Style Guide.
 
subject: PCI/Security for JBoss?
 
Similar Threads
Need Help on PCI Security Standards
I need matrial for java and hardware programing or control PCI and peripherals
Penetration Testing
security implementation in web service application
Securing tmp/ of a JBoss server instance