ASERT LOGO Advanced Software Engineering, Research and Training
Leading-Edge Courseware, Highly-Skilled Experienced Instructors
About ASERT
Home, Contact Us, Training Courses, Services, Products, Publications, Employment
Training
Training Calendar, Java Curriculum, XML and Web Services Curriculum, Linux Curriculum, Security Curriculum, Internet and Web Curriculum, Database Curriculum
Java Curriculum
General Courses
Java Primer, Java 5/6 Update, Java EE Overview, Java EE Development, Java Web Development FastTrack, Groovy

Specialist Courses
CORBA Primer, CORBA Development, Java Security, OOAD and UML, Tag Libraries, Struts, Eclipse RCP and Plug-Ins, Java Design Patterns, Web Frameworks, Persistence Technologies, Java and XML, Java Testing Tools, TopLink

JV222: Java Security Technologies (2 days)

Course Overview

This course explores the latest technologies available for building Java-based secure electronic commerce applications. Application examples discussed in the course include customer to business applications such as shopping cart based systems, eService systems and business to business EDI-like applications utilising XML. The course goes on to examine how these forms of eCommerce can be implemented using Java-based technology including Java Security, Java Wallets, enterprise-level Java packages and eCommerce specific servers. Security aspects covered include the Java Security Manager, the Java Cryptography Extension, digital signatures, message digests, encrypted messages and signed applets. Many Java eCommerce applications will make use of Java's enterprise-level packages such as JDBC, Servlets, Java Server Pages, RMI, Java/Corba, Java Beans, Enterprise Java Beans, XML and Transactions. Students will learn how these packages are used in an eCommerce context. Hands-on exercises will use some of these key technologies to develop a multi-tiered on-line shopping cart and other applications.

What to Expect

Expect an interactive course structured into several modules and delivered to suit customer requirements. All modules have a strong practical component, which enables each attendee to learn from hands-on experience and from other attendees while working alone or in small teams. Students will also receive a full copy of supporting notes. This course is approximately 60% hands-on programming/lab work and 40% lecture.

Audience

Software developers, designers, managers and architects interested in hands-on exploration of electronic commerce technology in Java.

Pre-requisites

To successfully complete all workshops fully, attendees will need to have previous development experience in Java .

Course Topics

  • Security Fundamentals and Concepts
    • Different forms of eCommerce for Integrating customers, businesses, and suppliers
    • Security concerns of eCommerce
    • Authentication
    • Digital Signatures
    • Public key cryptography
    • Encrypting messages to ensure confidentiality and privacy
    • Integrity provides tamper proofing of sensitive information
    • Message digests to make information tamper proof
    • Non-repudiation proves who conducted an action beyond any doubt
  • Exploiting Java's Security Features
    • Java Cryptography Architecture & Java Cryptography Extension (JCA/JCE)
    • Digital certificates & Java
    • Java Security Tools
    • Java Authentication & Authorisation Service (JAAS)
    • Java Secure Sockets Extension (JSSE)
    • Other Topics: Java Commerce Messages, Java Commerce Client, Java Wallets, Java Card API, Smart Cards
  • Security in Practice
    • The Applet Security Manager and sand-box security model
    • Writing and using signed applets
    • J2EE (JSP & EJB) Security
    • JDBC Security
    • JNDI Security
    • Using SSL
    • XML and Security
    • Web Service and Security
  • Wrap-up
    • Available products
    • Application & product demos

 
Terms and Conditions governing the use of this Web site. ASERT Privacy Policy. © 1998-2007 ASERT Consulting. All rights reserved.