Security

Java security technology includes a large set of APIs, tools, and implementations of commonly-used security algorithms, mechanisms, and protocols. The Java security APIs span a wide range of areas, including cryptography, public key infrastructure, secure communication, authentication, and access control. Java security technology provides the developer with a comprehensive security framework for writing applications, and also provides the user or administrator with a a set of tools to securely manage applications.

Enhancements

• JDK 8 Security Enhancements
• JDK 7 Security Enhancements
• JDK 6 Security Enhancements
• Blacklist Jar Feature
• Signature Timestamp Support

Programmer's Guides

General Security

• Java Security Overview
• Security Architecture
• Java Cryptography Architecture (JCA) Reference Guide
• How to Implement a Provider for the Java Cryptography Architecture
• Standard Algorithm Names
• Oracle Providers
• Policy Permissions
• Default Policy Implementation and Policy File Syntax
• API for Privileged Blocks
• Security Managers and the Java SE Development Kit
• Security for Rich Internet Applications (RIAs)
• Troubleshooting Security

Java Authentication and Authorization Service (JAAS)

• JAAS Reference Guide
• JAAS Tutorials
• JAAS LoginModule Developer's Guide

Java Generic Security Services (Java GSS-API)

• Java GSS-API and JAAS Tutorials for Use with Kerberos
• Single Sign-on Using Kerberos in Java
• Java GSS Security Features
• Java GSS Advanced Security Programming

Java PKCS#11 Reference Guide

• Java PKCS#11 Reference Guide

Java Secure Socket Extension (JSSE)

• JSSE Reference Guide

Public Key Infrastructure (PKI)

• Java PKI Programmer's Guide
• X.509 Certificates and Certificate Revocation Lists

Simple Authentication and Security Layer (SASL)

• The Java SASL API Programming and Deployment Guide

XML Digital Signature

• The XML Digital Signature API Specification
• The XML Digital Signature API Reference and Tutorial

API Specification

General Security

• java.security Package
• javax.crypto Package
• java.security.cert Package
• java.security.spec Package
• javax.crypto.spec Package
• java.security.interfaces Package
• javax.crypto.interfaces Package
• javax.rmi.ssl Package

Certification Path

• java.security.cert Package

JAAS

• javax.security.auth Package
• javax.security.auth.callback Package
• javax.security.auth.kerberos Package
• javax.security.auth.login Package
• javax.security.auth.spi Package
• javax.security.auth.x500 Package
• com.sun.security.auth Package
• com.sun.security.auth.callback Package
• com.sun.security.auth.login Package
• com.sun.security.auth.module Package

Java GSS-API

• org.ietf.jgss Package
• com.sun.security.jgss Package

JSSE

• javax.net Package
• javax.net.ssl Package
• javax.security.cert Package (Denigrated, use java.security.cert instead)

Java SASL

• javax.security.sasl Package

SSL/TLS-based RMI Socket Factories

• javax.rmi.ssl Package

XML Digital Signature

• javax.xml.crypto Package
• javax.xml.crypto.dom Package
• javax.xml.crypto.dsig Package
• javax.xml.crypto.dsig.dom Package
• javax.xml.crypto.dsig.keyinfo Package
• javax.xml.crypto.dsig.spec Package

Smart Card I/O

• javax.smartcardio Package

Tools

• Security Tools Summary
• keytool (for Solaris, Linux or Mac OS X) (for Windows)
• jarsigner (for Solaris, Linux or Mac OS X) (for Windows)
• policytool (for Solaris, Unix, or Mac OS X) (for Windows)
• kinit (for Windows)
• klist (for Windows)
• ktab (for Windows)

Tutorials

• The Security Features in Java SE trail of the Java Tutorial
• JAAS Tutorials.
• Java GSS-API and JAAS Tutorials for Use with Kerberos
• Policytool User's Guide

More Information

• The Java SE Security Home Page

All information of this service is derived from the free sources and is provided solely in the form of quotations. This service provides information and interfaces solely for the familiarization (not ownership) and under the "as is" condition.