File APIs for Java Developers
Manipulate DOC, XLS, PPT, PDF and many others from your application.
The moose likes Security and the fly likes Application security advice Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login
JavaRanch » Java Forums » Engineering » Security
Bookmark "Application security advice" Watch "Application security advice" New topic

Application security advice

Rajkumar Katudia
Ranch Hand

Joined: Jul 28, 2009
Posts: 51

I am writing an application using java technology.

Its a web application.

A social networking web site.

Need advice regarding its security?

What aspects do I need to keep in mind? A secured URL is just to encrypt the communication between client (browser) and server. What other aspects like security against cross site scripting, SQL Injection do I need to take into consideration while designing the application?

Ulf Dittmer

Joined: Mar 22, 2005
Posts: 42965
Security isn't something that can bolted onto an app once it's done; it needs to be considered from the start for all of its aspects. Start reading here: Also consider the non-code aspects like security at the hosting center, malicious users, etc.
I agree. Here's the link:
subject: Application security advice
It's not a secret anymore!