This week's book giveaway is in the Servlets forum.
We're giving away four copies of Murach's Java Servlets and JSP and have Joel Murach on-line!
See this thread for details.
The moose likes Architect Certification (SCEA/OCMJEA) and the fly likes Use of third party library to handle security threats Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of Murach's Java Servlets and JSP this week in the Servlets forum!
JavaRanch » Java Forums » Certification » Architect Certification (SCEA/OCMJEA)
Bookmark "Use of third party library to handle security threats" Watch "Use of third party library to handle security threats" New topic
Author

Use of third party library to handle security threats

Rishi Shehrawat
Ranch Hand

Joined: Aug 11, 2010
Posts: 218

I am thinking of using third party library to handle security threats like XSS, Cross site request forgery, etc. There are tested, tried third party libraries that can be used to handle these type of threats. In this scenario i feel that it does not make sense to re-invent the wheel.

Can I use a third party library? I will provide justification for using the library in the decisions section
Arnold Reuser
Ranch Hand

Joined: Nov 20, 2003
Posts: 194
Could you provide an example of a potential solution, that you've applied to production servers, to handle these kind of security threats?
Jeanne Boyarsky
internet detective
Marshal

Joined: May 26, 2003
Posts: 30057
    
149

Rishi,
Yes. It is ok to use a third party library.


[Blog] [JavaRanch FAQ] [How To Ask Questions The Smart Way] [Book Promos]
Blogging on Certs: SCEA Part 1, Part 2 & 3, Core Spring 3, OCAJP, OCPJP beta, TOGAF part 1 and part 2
Ranganathan Kaliyur Mannar
Bartender

Joined: Oct 16, 2003
Posts: 1076
    
  10

It is ok to use that. You can choose to generally include that - I have just included 'AJAX framework' in my appframework -
or you can even go specific in deployment diagram 'vendor notes'...


Ranga.
SCJP 1.4, OCMJEA/SCEA 5.0.
 
 
subject: Use of third party library to handle security threats
 
Similar Threads
Possible to add new custom header
JSP to Excel spreadsheetS
Opening file from remote machine using authentication
GWT Entry point Configuration
web browser project