0-596-00157-6O'Reilly 9780596001575 0596001576May-01 List Price: $49.99Paperback599 pages Our Price: $44.99 Java's most striking claim is that it provides a secure programming environment. However, despite lots of discussion, few people understand precisely what Java's claim mean and how it backs up those claims. Java Security is an in-depth exploration aimed at developers, network administrators, and anyone who needs to work with or understand Java's security mechanisms. It discusses in detail what security means and doesn't mean, what Java's default security policies are, and how to create and implement your own policies. In doing so, this second edition of Java Security provides detailed coverage of security managers, class loaded, the access controller, and much of the java.security package. It discusses message digests, certificates, and digital signatures, showing you how to use Java's facilities for signing classes or implement your own signature facility. It also shows you how to write a class loader that recognizes signed classes, verifies the signature, and cooperates with a security manager to grant additional privileges It discusses the problems of managing cryptographic keys and shows you how to implement your own key management systems. It details how the Java Secure Socket Extension (JSEE) can be used to perform Secure Sockets Layer encryption and how to handle authentication and permissions using the Java Authentication and Authorization Service (JAAS). Java Security is an essential book for everyone writing real-world software for the Internet. If you're deploying software written in Java, you need to know how to rant your classes the privileges they need, without granting privileges to untrusted classes. You need to know how to protect your systems against intrusion and corruption. Java provides the tools; this book shows you how to use them. Covers Java 1.1, Java 2, and JCE 1.2.1.