The Securing Java Web Services training course provides Java developers with the knowledge needed to develop secure Web services.
The course emphasizes hands-on experimentation with students spending roughly half of the classroom time solving specific security problems. The bulk of the course is spent working with JAX-RPC web services: adding WS-Security headers, signing and encrypting message content, and passing SAML assertions among various parties to a messaging scenario.
- Understand the challenges of securing web services
- Understand the standards used
- Perform security authentication
What You'll Learn
In the Securing Java Web Services training course, you’ll learn:
- Why and what?
- Characteristics of application security
- Basic security mechanisms
- Basic Security at the EE level
- Role-based authentication
- Specifying security constraints
- Programmatic security
- Declarative security
- Challenges with Securing XML-Based Services
- Challenges and pitfalls
- WS-I Basic Security Profile
- Standards (WS-Security, wS-SecurityPolicy, SAML)
- Using WS-Security
- What it is
- Asymmetric vs symmetric encryption
- Signing messages and files
- Encrypting files
- Using WS-Policy
- What it is
- Creating policies
- Working with WS-SecurityPolicy
- Attachment techniques
- XML Security Tokens
- Signed Security Tokens (X.509 and Kuberos)
- Unsigned security tokens
- Using interceptors
- Best Practices
Meet Your Instructor
Simon has over 15 years of experience defining, developing, and delivering software development training programs.
As a senior instructor and courseware developer for Sun Microsystems, Simon developed and delivered Java training courses for Sun Educational Services’ internal and external customers. While at Sun, he was a guest presenter at JavaOne, Java University, and other software trade shows. Simon’s most significant accolade was his work as the development lead in the design, development,...Marnie
Marnie brings 15 years of experience delivering programming related training. During that time she has taught for top-technology companies including: Sun (and later Oracle) certified Java classes, RedHat Certified JBoss administration courses, Spring Source Certified Spring and Hibernate courses. Her classes have run the gamut from introduction to programming classes to Java EE web services and much of the Java EE stack in between.
She has a passion for teaching, which is evident in her presentations and...