Learn more about this topic
- "Java Security Evolution and Concepts," Raghavan N. Srinivas (JavaWorld):
- Part 1Learn computer security concepts and terms in this introductory overview (April 2000)
- Part 2Discover the ins and outs of Java security (July 2000)
- Part 3Tackle Java applet security with confidence (December 2000)
- Part 4Learn how optional packages extend and enhance Java security (May 2001)
- Part 5J2SE 1.4 offers numerous improvements to Java security (December 2001)
- JavaWorld's Java Bookstore security page can point you to numerous security-related books
http://www.javaworld.com/javaworld/books/jw-books-security.html - For comprehensive Java security information, read the Java Security API page at java.sun.com
http://java.sun.com/security - "Security on the Java PlatformRecent Developments and Future Directions," Li Gong. Slides from a JavaOne 1998 technical session covering Java security
http://java.sun.com/javaone/javaone98/sessions/T101/index.htm - Java security information from JavaOne 1999
http://industry.java.sun.com/javaone/99/tracks/ - "Low Level Security in Java," Frank Yellin (java.sun.com)
http://java.sun.com/sfaq/verifier.html - Java-security@sun.com archives -- April 2000
http://archives.java.sun.com/archives/java-security.html - "Frequently Asked Questions -- Java Security" (java.sun.com)
http://java.sun.com/sfaq/ - "TrailSecurity in Java 2 SDK 1.2," Mary Dageforde (Java Developer's Connection)
http://web2.java.sun.com/docs/books/tutorial/security1.2/index.html - Secure Internet Programming, Princeton University's well regarded Website, dedicates itself to computer security, especially mobile code such as Java
http://www.cs.princeton.edu/sip/ - The University of Washington's Kimera -- A System Architecture for Networked Computers Website
http://kimera.cs.washington.edu/ - For CERT advisories, a comprehensive list of security-related problems with suggested remedial action, see
http://www.cert.org/ - Applied CryptographyProtocols, Algorithms, and Source Code in C, 2nd ed., Bruce Schneier (John Wiley and Sons, 1996). A fascinating book on the science and politics of cryptography
http://www1.fatbrain.com/asp/bookinfo/bookinfo.asp?theisbn=0471128457 - Find information and news about the Advanced Encryption Standard (AES) by going to the AES Webpage
http://csrc.nist.gov/encryption/aes/ - RSA Labs' FAQ about today's cryptographyftp://ftp.rsasecurity.com/pub/labsfaq/labsfaq4.pdf
- X.509 standard for certificates
http://www.ietf.org/rfc/rfc2459.txt
This story, "Java security evolution and concepts, Part 1: Security nuts and bolts" was originally published by JavaWorld.