IBM WebSphere Application Server v7.0 Security

For IBM WebSphere users, this is the complete guide to securing your applications with Java EE and JAAS security standards. From a far-ranging overview to the fundamentals of data encryption, all the essentials are here.
Preview in Mapt

IBM WebSphere Application Server v7.0 Security

Omar Siliceo

1 customer reviews
For IBM WebSphere users, this is the complete guide to securing your applications with Java EE and JAAS security standards. From a far-ranging overview to the fundamentals of data encryption, all the essentials are here.
Mapt Subscription
FREE
$29.99/m after trial
eBook
$23.10
RRP $32.99
Save 29%
Print + eBook
$54.99
RRP $54.99
What do I get with a Mapt Pro subscription?
  • Unlimited access to all Packt’s 5,000+ eBooks and Videos
  • Early Access content, Progress Tracking, and Assessments
  • 1 Free eBook or Video to download and keep every month after trial
What do I get with an eBook?
  • Download this book in EPUB, PDF, MOBI formats
  • DRM FREE - read and interact with your content when you want, where you want, and how you want
  • Access this title in the Mapt reader
What do I get with Print & eBook?
  • Get a paperback copy of the book delivered to you
  • Download this book in EPUB, PDF, MOBI formats
  • DRM FREE - read and interact with your content when you want, where you want, and how you want
  • Access this title in the Mapt reader
What do I get with a Video?
  • Download this Video course in MP4 format
  • DRM FREE - read and interact with your content when you want, where you want, and how you want
  • Access this title in the Mapt reader
$0.00
$23.10
$54.99
$29.99 p/m after trial
RRP $32.99
RRP $54.99
Subscription
eBook
Print + eBook
Start 30 Day Trial

Frequently bought together


IBM WebSphere Application Server v7.0 Security Book Cover
IBM WebSphere Application Server v7.0 Security
$ 32.99
$ 23.10
Building Serverless Applications with Python Book Cover
Building Serverless Applications with Python
$ 39.99
$ 28.00
Buy 2 for $35.00
Save $37.98
Add to Cart

Book Details

ISBN 139781849681483
Paperback312 pages

Book Description

In these days of high-profile hacking, server security is no less important than securing your application or network. In addition many companies must comply with government security regulations. No matter how secure your application is, your business is still at risk if your server is vulnerable. Here is how you solve your WebSphere server security worries in the best possible way.

This tutorial is focused towards ways in which you can avoid security loop holes. You will learn to solve issues that can cause bother when getting started with securing your IBM WebSphere Application Server v7.0 installation. Moreover, the author has documented details in an easy-to-read format, by providing engaging hands-on exercises and mini-projects.

The book starts with an in-depth analysis of the global and administrative security features of WebSphere Application Server v7.0, followed by comprehensive coverage of user registries for user authentication and authorization information. Moving on you will build on the concepts introduced and get hands-on with a mini project. From the next chapter you work with the different front-end architectures of WAS along with the Secure Socket Layer protocol, which offer transport layer security through data encryption.

You learn user authentication and data encryption, which demonstrate how a clear text channel can be made safer by using SSL transport to encrypt its data. The book will show you how to enable an enterprise application hosted in a WebSphere Application Server environment to interact with other applications, resources, and services available in a corporate infrastructure. Platform hardening, tuning parameters for tightening security, and troubleshooting are some of the aspects of WebSphere Application Server v7.0 security that are explored in the book. Every chapter builds strong security foundations, by demonstrating concepts and practicing them through the use of dynamic, web-based mini-projects.

Table of Contents

Chapter 1: A Threefold View of WebSphere Application Server Security
Enterprise Application-server infrastructure architecture view
WebSphere architecture view
WebSphere technology stack view
Summary
Chapter 2: Securing the Administrative Interface
Information needed: Planning for security
Enabling security
Administrative roles
Disabling security
Summary
Chapter 3: Configuring User Authentication and Access
Security domains
Administrative security domain
User registry concepts
Supported user registry types
Protecting application servers
Summary
Chapter 4: Front-End Communication Security
Front-end enterprise application infrastructure architectures
SSL configuration and management
Securing front-end components communication
Summary
Chapter 5: Securing Web Applications
Securing web applications concepts
Securing a web application
Summary
Chapter 6: Securing Enterprise Java Beans Applications
EJB application security concepts
EJB project design
EJB project prerequisites and assumptions
Creating an Enterprise Application Project
Creating the portal Dynamic Web Project
Creating content for the portal DWP
Creating an EJB project
The grand finale
Summary
Chapter 7: Securing Back-end Communication
LDAP: Uses of encryption
JDBC: WebSphere-managed authentication
Summary
Chapter 8: Secure Enterprise Infrastructure Architectures
The enterprise infrastructure
Securing the enterprise infrastructure using LTPA
Securely enhancing the user experience with SSO
Fine-tuning authorization at the HTTP server level
Fine-tuning authorization at the WAS level
Summary
Chapter 9: WebSphere Default Installation Hardening
Engineering the how and where of an installation
Ensuring good housekeeping of an installation
Summary
Chapter 10: Platform Hardening
Identifying where to focus
Exploring the operating system
Creating the file system
Safeguarding the network system
Summary
Chapter 11: Security Tuning and Troubleshooting
Tuning WebSphere security
Troubleshooting WebSphere security-related issues
Concluding WebSphere security-related tips
Summary

What You Will Learn

  • Create security domains using the wsadmin scripting tool
  • Get hands-on experience working with a mini-project to protect a Java EE Application Server
  • Secure your frontend with Secure Socket Layer Protocol and IBM HTTP Server
  • Get to grips with user authentication and authorization by building a multi-module Enterprise Web Application; packaging, deploying, and testing it
  • Work around to secure an EJB application by building on the existing mini-project
  • Configure authentication and resource access (authorization) using user registry groups and application-defined roles
  • Configure WebSphere Application Server v7.0 for SSO and LTPA and work across remote servers
  • Explore the powerful concepts of data encryption and SSL certificates practically
  • Practice platform hardening with respect to the Operating System, File System, and network configuration

Authors

Table of Contents

Chapter 1: A Threefold View of WebSphere Application Server Security
Enterprise Application-server infrastructure architecture view
WebSphere architecture view
WebSphere technology stack view
Summary
Chapter 2: Securing the Administrative Interface
Information needed: Planning for security
Enabling security
Administrative roles
Disabling security
Summary
Chapter 3: Configuring User Authentication and Access
Security domains
Administrative security domain
User registry concepts
Supported user registry types
Protecting application servers
Summary
Chapter 4: Front-End Communication Security
Front-end enterprise application infrastructure architectures
SSL configuration and management
Securing front-end components communication
Summary
Chapter 5: Securing Web Applications
Securing web applications concepts
Securing a web application
Summary
Chapter 6: Securing Enterprise Java Beans Applications
EJB application security concepts
EJB project design
EJB project prerequisites and assumptions
Creating an Enterprise Application Project
Creating the portal Dynamic Web Project
Creating content for the portal DWP
Creating an EJB project
The grand finale
Summary
Chapter 7: Securing Back-end Communication
LDAP: Uses of encryption
JDBC: WebSphere-managed authentication
Summary
Chapter 8: Secure Enterprise Infrastructure Architectures
The enterprise infrastructure
Securing the enterprise infrastructure using LTPA
Securely enhancing the user experience with SSO
Fine-tuning authorization at the HTTP server level
Fine-tuning authorization at the WAS level
Summary
Chapter 9: WebSphere Default Installation Hardening
Engineering the how and where of an installation
Ensuring good housekeeping of an installation
Summary
Chapter 10: Platform Hardening
Identifying where to focus
Exploring the operating system
Creating the file system
Safeguarding the network system
Summary
Chapter 11: Security Tuning and Troubleshooting
Tuning WebSphere security
Troubleshooting WebSphere security-related issues
Concluding WebSphere security-related tips
Summary

Book Details

ISBN 139781849681483
Paperback312 pages
Read More
From 1 reviews

Read More Reviews

Recommended for You

IBM WebSphere Application Server 8.0 Administration Guide Book Cover
IBM WebSphere Application Server 8.0 Administration Guide
$ 35.99
$ 25.20
Oracle Weblogic Server 11gR1 PS2: Administration Essentials Book Cover
Oracle Weblogic Server 11gR1 PS2: Administration Essentials
$ 32.99
$ 23.10
Oracle SOA BPEL Process Manager 11gR1 – A Hands-on Tutorial Book Cover
Oracle SOA BPEL Process Manager 11gR1 – A Hands-on Tutorial
$ 32.99
$ 23.10
Appcelerator Titanium Business Application Development Cookbook Book Cover
Appcelerator Titanium Business Application Development Cookbook
$ 29.99
$ 21.00
Building Websites with Microsoft Content Management Server Book Cover
Building Websites with Microsoft Content Management Server
$ 35.99
$ 25.20
Monkey Game Development: Beginner's Guide Book Cover
Monkey Game Development: Beginner's Guide
$ 29.99
$ 21.00