Web Application Security Part 2

Agenda

Client certificate-based authentication
Digest-based authentication
Declarative authorization
Programmatic authorization
Programmatic authentication

Why Certificate-based Authentication?

Username/password authentication cannot be used between program to program authentication
- Certificates may identify end-users, business organizations, servers, software entities
Username/password pair might not provide enough credentials
- Certificate can contain much more than username and password

Certificate-based Authentication

Client authentication
- Server verifies client's identity
Server authentication
- Client verifies server's identity
- Occurs “transparently” in SSL-based browser and web server communication
Mutual authentication
- both server and client verify each other's identity

You must have an active subscription to download PDF and Lab Zip of this course topic.Please click the "Subscribe" button or the "Login" button if you already have an account.

Subscribe Login

Just wanted to let you know that I had been trying to learn Web Services through online resources and books available in the market. But the topics were so complex and huge to understand and I barely ever made it through couple of chapters until I took "5-Day Web Services Programming Code Camp". The content and topics were well organized and easy to understand with a lot of hands-on lab work. The recordings are helping me to go back and listen to the parts I missed during the Code Camp. Thank you for your patience in listening and answering to my questions. This was my first JPassion Code Camp and really enjoyed it and grasped good knowledge of Web Services in a short time. I am looking forward to many more Code Camps. I have recommended JPassion.com to my friends.

Prashanthi

The "Java web services Code Camp" is very useful. The instructor is great. I love the detailed labs, which include snapshots to ease getting started, and the resources for further reading. The best part is that the instructor moves at a good speed so it doesnt get boring." I would love if the code camps were available in a class room format as well - something akin to a evening certificate course.

Mitali J.

The question: what's the best value on this planet for high-quality technical training? The answer: JPassion.com. How can I say that? (1) I'm a paid subscriber to jpassion like anyone else (2) I attended Web services codecamp and downloaded many other courses (3) I have 15 years hands-on Java Web development, infrastructure and architecture support. (4) I've build and delivered similar training courses, content, labs, applications to thousands (5) I've been an IBM certified technology partner on WebFacing. Why js JPassion.com the best? (1) High quality well-organized material (documentation, labs) that goes beyond the basics (2) Excellent code camps deliver full, online, instructor-led classes with hands-on labs (3) Very high-quality, clear instruction including review of lab materials (4) Instructor answers questions clearly, thoroughly during class (5) Course completion certificates for students completing all course work (6) Labs are well-built, clear and easy to follow (7) Course materials are well-maintained for technology updates and changes (8) Course materials include presentations, hands-on lab exercises with documentation, class videos that can all be downloaded so students can use when and where needed (9) Courses are well organized so advanced students can move productively through relevant material, labs while new students can work through all materials easily in order (10) Labs were well-organized logically to fit available class time: I could run a lab in minutes. If I needed to build it, I could spend more time where needed after class (11) While “busy” on other, normal work, I was able to participate as needed online in code camps to upgrade my skills nicely (12) Courses emphasize standards-based training so students are better prepared to support any vendor platform compared to more expensive, vendor training for a single product (13) Courses provide excellent references for more information on topics if you need it (14) Courses are great preparation for industry-standard certification exams (15) The best, low cost, flexible training for those looking to build real technical skills.

Jim M.

I wanted to thank you for your time and effort in teaching a course of web services programming! Professional Java APIs for XML has at last given me the chance to learn and implement new skills in the area of markup languages, and to see how my background in technical editing could be well suited to DTD Authoring, in particular.

Donatien M.

I have attended the 5-day Web Services Programming code camp. Great course. I highly recommend it.

Anoop M.

The Web services course is extremely informative with lots of hands-on coding examples.

Dileep

The course is chock full of practical information, immediately reinforced by thoroughly thought-out exercises. The instructor is indeed a gifted lecturer, who can patiently and continually reformulate and repackage difficult concepts until the students 'get it'. I can think of no better value for the training dollar.

Cris L.

I found the course to be extremely informative. The contents are well organized and the labs are a superb learning tool because each step is shown. If you're hoping to get into Web services and/or SOA, this is the course to take.

D. F. KFLA Public Health

This is the best resource for learning Java programming. The material is thorough and well-detailed, yet concise. The Web Services and SOA Programming bootcamp was a huge springboard in my career as a middleware developer and in my personal persuits in Java development.

J. C., Middleware,Deloitte Consulting

This course is intensive. The material is presented well and the labs are very informative and give a basis from which to start a project. The course is fast paced; wish it had been two weeks for my own comfort

John G.

The 5-day Web Services and SOA code camp was a fun and fast way to learn all about Web Services and SOA. The class lectures and labs were a great preparation for the final day topics of SOA and ESB. Sang Shin answered all of my questions with clear explanations and examples in order to make sure that I was able to understand the presentations. I have a better understanding of Java Web Services and SOA because of the enjoyable and educational discussions that developed from the presentations. The labs for the class reinforced how to implement the material that was presented. Now, I am capable of implementing RESTful web services as well as SOAP based Web Services and BPEL modules that I can use to create composite applications to deploy on an ESB.

Jody F.,ProObject Inc.

Testimonial1
Testimonial2
Testimonial3
Testimonial4
Testimonial5
Testimonial6
Testimonial7
Testimonial8
Testimonial9
Testimonial10
Testimonial11