aspose file tools*
The moose likes Architect Certification (SCEA/OCMJEA) and the fly likes Use of third party library to handle security threats Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login
JavaRanch » Java Forums » Certification » Architect Certification (SCEA/OCMJEA)
Bookmark "Use of third party library to handle security threats" Watch "Use of third party library to handle security threats" New topic
Author

Use of third party library to handle security threats

Rishi Shehrawat
Ranch Hand

Joined: Aug 11, 2010
Posts: 218

I am thinking of using third party library to handle security threats like XSS, Cross site request forgery, etc. There are tested, tried third party libraries that can be used to handle these type of threats. In this scenario i feel that it does not make sense to re-invent the wheel.

Can I use a third party library? I will provide justification for using the library in the decisions section
Arnold Reuser
Ranch Hand

Joined: Nov 20, 2003
Posts: 196
Could you provide an example of a potential solution, that you've applied to production servers, to handle these kind of security threats?
Jeanne Boyarsky
author & internet detective
Marshal

Joined: May 26, 2003
Posts: 30780
    
157

Rishi,
Yes. It is ok to use a third party library.


[Blog] [JavaRanch FAQ] [How To Ask Questions The Smart Way] [Book Promos]
Blogging on Certs: SCEA Part 1, Part 2 & 3, Core Spring 3, OCAJP, OCPJP beta, TOGAF part 1 and part 2
Ranganathan Kaliyur Mannar
Bartender

Joined: Oct 16, 2003
Posts: 1085
    
  10

It is ok to use that. You can choose to generally include that - I have just included 'AJAX framework' in my appframework -
or you can even go specific in deployment diagram 'vendor notes'...


Ranga.
SCJP 1.4, OCMJEA/SCEA 5.0.
 
 
subject: Use of third party library to handle security threats