The Artima Developer Community
Articles | News | Weblogs | Books | Forums
Artima Forums | Articles | Weblogs | Java Answers | News
Sponsored Link

Java Buzz Forum
BEA jumps on security bandwagon

0 replies on 1 page.

Welcome Guest
  Sign In

Go back to the topic listing  Back to Topic List Click to reply to this topic  Reply to this Topic Click to search messages in this forum  Search Forum Click for a threaded view of the topic  Threaded View   
Previous Topic   Next Topic
Flat View: This topic has 0 replies on 1 page
Vinny Carpenter

Posts: 276
Nickname: vscarpente
Registered: Feb, 2003

Vinny is a Java developer/architect working with Java, J2EE, OO, Linux, OpenSource.
BEA jumps on security bandwagon Posted: Oct 14, 2003 8:28 PM
Reply to this message Reply

This post originated from an RSS feed registered with Java Buzz by Vinny Carpenter.
Original Post: BEA jumps on security bandwagon
Feed Title: Vinny Carpenter's Blog
Feed URL: http://www.j2eegeek.com/error.html
Feed Description: Welcome to my blog. I am a total Java geek that lives in Milwaukee, making my living as an architect/developer, spending all my time with Java, J2EE, OO, Linux, and open source. In my spare time, when I am not in front of my computers, I spend every other minute with my other loves: My wife, books, music, guitars, Formula-1 racing and StarGate. Check out my blog @ http://www.j2eegeek.com/blog 		Latest Java Buzz Posts
Latest Java Buzz Posts by Vinny Carpenter
Latest Posts From Vinny Carpenter's Blog

Advertisement

I first saw this on CNET in an article entitled - BEA jumps on security bandwagon. In a nutshell, the BEA WebLogic Enterprise Security product is an application security infrastructure solution that uses a service-oriented approach to enable security services for your applications.

The product is based on most of the stuff that came over as part of the CrossLogix acquisition. The interesting thing for me on this whole story was how security is playing an integral part of the application development process and how companies like BEA are jumping in this market. IBM has also been buying companies to complete its security/identity story in the Tivoli suite of products with TIM & TAM.

Another interesting part of the press release was that JAAS was not mentioned once. JAAS or the Java Authentication and Authorization Service is a package integrated into Java 1.4 that enables services to authenticate and enforce access controls upon users. It implements a standard Pluggable Authentication Module (PAM) framework, and supports user-based authorization.

JAAS was a good first step for authentication and authorization for Java applications, but there are several limitations of the framework and I'm not sure what the future holds. It seems odd to write all this JAAS code for applications that are running inside a web/ejb container when the container has all of these services.

I haven't been lurking in the comp.lang.java.security newsgroup and so I don't know what the future holds for JAAS. I guess I'll have to go through the 15,000+ posting that are waiting in my newsreader.

Read: BEA jumps on security bandwagon

Topic: Lazyweb: Guide to Securing JBoss? Previous Topic   Next Topic Topic: Y! BMC Message:
Sponsored Links


Google
  Web Artima.com   

Copyright © 1996-2019 Artima, Inc. All Rights Reserved. - Privacy Policy - Terms of Use