Book Image

Restful Java Web Services Security

By : René Enríquez
Book Image

Restful Java Web Services Security

By: René Enríquez

Overview of this book

Related Content you might be interested in

Current Title:

Small book image
Restful Java Web Services Security
René Enríquez
Jul, 2014 | 144 pages
No titles found
Table of Contents (12 chapters)
RESTful Java Web Services Security
RESTful Java Web Services Security
Credits
Credits
About the Authors
About the Authors
About the Reviewers
About the Reviewers
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
Setting Up the Environment
Setting Up the Environment
Downloading tools
Creating the base project
First functional example
Summary
2
The Importance of Securing Web Services
The Importance of Securing Web Services
The importance of security
Security management options
API keys
Summary
3
Security Management with RESTEasy
Security Management with RESTEasy
Fine-grained and coarse-grained security
Summary
4
RESTEasy Skeleton Key
RESTEasy Skeleton Key
OAuth protocol
OAuth and RESTEasy Skeleton Key
SSO configuration for security management
OAuth token via Basic Auth
Custom filters
Summary
5
Digital Signatures and Encryption of Messages
Digital Signatures and Encryption of Messages
Digital signatures
Message body encryption
Summary
Index
Index

Chapter 5. Digital Signatures and Encryption of Messages

Since many systems interact with each other to achieve their business goals, we often feel the obligation to interact with services exposed by others. Also, when security needs play an important role, we must verify that the information we receive has been sent from whom we expected, and it has come without being altered. It is here where digital signatures will play an important role and help us meet this need.

Also, we may sometimes need to encrypt the message body to prevent it from being read if intercepted by unwanted persons. It is here where we can make use of Secure/Multipurpose Internet Mail Extensions, or the S/MIME standard, which is commonly used in the world of e-mail for public keys (http://en.wikipedia.org/wiki/Public_key), encryption (http://en.wikipedia.org/wiki/Encryption), and signing (http://en.wikipedia.org/wiki/Digital_signature) of MIME data (http://en.wikipedia.org/wiki/MIME), and which also offers the ability...

Previous Section
End of Section 1
Next Section