This week's book giveaway is in the Servlets forum.
We're giving away four copies of Murach's Java Servlets and JSP and have Joel Murach on-line!
See this thread for details.
The moose likes JBoss/WildFly and the fly likes PCI/Security for JBoss? Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login

Win a copy of Murach's Java Servlets and JSP this week in the Servlets forum!
JavaRanch » Java Forums » Products » JBoss/WildFly
Bookmark "PCI/Security for JBoss?" Watch "PCI/Security for JBoss?" New topic

PCI/Security for JBoss?

Jimmy Ho
Ranch Hand

Joined: Jul 31, 2007
Posts: 61

I'm looking to put in a simple web application on JBoss, and the JBoss instance sits on a server with PCI information (credit cards, etc) and possibly PII (SSN's, etc.). This can't be helped. It's unclear at this point if any of the applications we will be writing will directly access this sensitive data, or if we're merely trying to protect the overall server.

Does JBoss have an known issues with security or PCI compliance? Is there an app server that lends itself better to PCI? Anyone have any links to prior discussions in this forum or some whitepapers somewhere?

Architecturally, we want to stick with JBoss because we've already purchased it for other uses, but if the reasons are compelling, it may be worth investigating an alternative.

I agree. Here's the link:
subject: PCI/Security for JBoss?
Similar Threads
Need Help on PCI Security Standards
I need matrial for java and hardware programing or control PCI and peripherals
Penetration Testing
security implementation in web service application
Securing tmp/ of a JBoss server instance