File APIs for Java Developers
Manipulate DOC, XLS, PPT, PDF and many others from your application.
The moose likes Security and the fly likes Application security advice Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login

Win a copy of EJB 3 in Action this week in the EJB and other Java EE Technologies forum!
JavaRanch » Java Forums » Engineering » Security
Bookmark "Application security advice" Watch "Application security advice" New topic

Application security advice

Rajkumar Katudia
Ranch Hand

Joined: Jul 28, 2009
Posts: 51

I am writing an application using java technology.

Its a web application.

A social networking web site.

Need advice regarding its security?

What aspects do I need to keep in mind? A secured URL is just to encrypt the communication between client (browser) and server. What other aspects like security against cross site scripting, SQL Injection do I need to take into consideration while designing the application?

Ulf Dittmer

Joined: Mar 22, 2005
Posts: 39535
Security isn't something that can bolted onto an app once it's done; it needs to be considered from the start for all of its aspects. Start reading here: Also consider the non-code aspects like security at the hosting center, malicious users, etc.

Ping & DNS - updated with new look and Ping home screen widget
I agree. Here's the link:
subject: Application security advice
Similar Threads
Mobile Application - need advice!
What is an Aspect
Security Aspects to be considered
How to overide security behavior in j2me mobile application to accept self signed certitficate?
What is Web Service?