Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Advanced Search Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying IBM WebSphere Application Server v7.0 Security
  • Table Of Contents Toc
  • Feedback & Rating feedback
IBM WebSphere Application Server v7.0 Security

IBM WebSphere Application Server v7.0 Security

By : Omar P Siliceo (USD)
3 (2)
Buy this Book
close
close
IBM WebSphere Application Server v7.0 Security

IBM WebSphere Application Server v7.0 Security

3 (2)
By: Omar P Siliceo (USD)
Buy this Book

Overview of this book

In these days of high-profile hacking, server security is no less important than securing your application or network. In addition many companies must comply with government security regulations. No matter how secure your application is, your business is still at risk if your server is vulnerable. Here is how you solve your WebSphere server security worries in the best possible way. This tutorial is focused towards ways in which you can avoid security loop holes. You will learn to solve issues that can cause bother when getting started with securing your IBM WebSphere Application Server v7.0 installation. Moreover, the author has documented details in an easy-to-read format, by providing engaging hands-on exercises and mini-projects. The book starts with an in-depth analysis of the global and administrative security features of WebSphere Application Server v7.0, followed by comprehensive coverage of user registries for user authentication and authorization information. Moving on you will build on the concepts introduced and get hands-on with a mini project. From the next chapter you work with the different front-end architectures of WAS along with the Secure Socket Layer protocol, which offer transport layer security through data encryption. You learn user authentication and data encryption, which demonstrate how a clear text channel can be made safer by using SSL transport to encrypt its data. The book will show you how to enable an enterprise application hosted in a WebSphere Application Server environment to interact with other applications, resources, and services available in a corporate infrastructure. Platform hardening, tuning parameters for tightening security, and troubleshooting are some of the aspects of WebSphere Application Server v7.0 security that are explored in the book. Every chapter builds strong security foundations, by demonstrating concepts and practicing them through the use of dynamic, web-based mini-projects.
Table of Contents (17 chapters)
close
close
close
IBM WebSphere Application Server v7.0 Security
Icon
IBM WebSphere Application Server v7.0 Security
Credits
Icon
Credits
About the Author
chevron up
Icon
About the Author
About the Reviewers
Icon
About the Reviewers
www.PacktPub.com
Icon
www.PacktPub.com
Preface
Icon
Preface
Lock Free Chapter
1
A Threefold View of WebSphere Application Server Security
Icon
A Threefold View of WebSphere Application Server Security
Icon
Enterprise Application-server infrastructure architecture view
Icon
WebSphere architecture view
Icon
WebSphere technology stack view
Icon
Summary
2
Securing the Administrative Interface
Icon
Securing the Administrative Interface
Icon
Information needed: Planning for security
Icon
Enabling security
Icon
Administrative roles
Icon
Disabling security
Icon
Summary
3
Configuring User Authentication and Access
Icon
Configuring User Authentication and Access
Icon
Security domains
Icon
Administrative security domain
Icon
User registry concepts
Icon
Supported user registry types
Icon
Protecting application servers
Icon
Summary
4
Front-End Communication Security
Icon
Front-End Communication Security
Icon
Front-end enterprise application infrastructure architectures
Icon
SSL configuration and management
Icon
Securing front-end components communication
Icon
Summary
5
Securing Web Applications
Icon
Securing Web Applications
Icon
Securing web applications concepts
Icon
Securing a web application
Icon
Summary
6
Securing Enterprise Java Beans Applications
Icon
Securing Enterprise Java Beans Applications
Icon
EJB application security concepts
Icon
EJB project design
Icon
EJB project prerequisites and assumptions
Icon
Creating an Enterprise Application Project
Icon
Creating the portal Dynamic Web Project
Icon
Creating content for the portal DWP
Icon
Creating an EJB project
Icon
The grand finale
Icon
Summary
7
Securing Back-end Communication
Icon
Securing Back-end Communication
Icon
LDAP: Uses of encryption
Icon
JDBC: WebSphere-managed authentication
Icon
Summary
8
Secure Enterprise Infrastructure Architectures
Icon
Secure Enterprise Infrastructure Architectures
Icon
The enterprise infrastructure
Icon
Securing the enterprise infrastructure using LTPA
Icon
Securely enhancing the user experience with SSO
Icon
Fine-tuning authorization at the HTTP server level
Icon
Fine-tuning authorization at the WAS level
Icon
Summary
9
WebSphere Default Installation Hardening
Icon
WebSphere Default Installation Hardening
Icon
Engineering the how and where of an installation
Icon
Ensuring good housekeeping of an installation
Icon
Summary
10
Platform Hardening
Icon
Platform Hardening
Icon
Identifying where to focus
Icon
Exploring the operating system
Icon
Creating the file system
Icon
Safeguarding the network system
Icon
Summary
11
Security Tuning and Troubleshooting
Icon
Security Tuning and Troubleshooting
Icon
Tuning WebSphere security
Icon
Troubleshooting WebSphere security-related issues
Icon
Concluding WebSphere security-related tips
Icon
Summary

About the Author

Omar Siliceo, a professional Systems Engineer with a Master of Science degree in Electrical Engineering, started his IT career in the year 1991 as a Research Specialist, performing the roles of systems specialist, Internet and Unix systems administrator, and Internet systems consultant, when he was invited to join the Computer Center group at Vanderbilt University. In 1994, he joined the information technology team as a consultant, performing systems integration at the King Faisal Specialist Hospital and Research Centre in Saudi Arabia. After returning to the United States of America in 1997, he launched his IT consulting practice, creating partnerships with companies such as CTG and Ajilon. During the period from 1997-2004 he spent most of it (1997-2002) working with IBM in finding e-commerce solutions for customers such as Macy's, the NBA Store and Blair, and event Cybercast Infrastructure Administration for customers such as The Wimbledon Championships and The Masters Golf Tournament. It was during this period that he became exposed to early WebSphere technologies, including but not limited to WebSphere Application Server, WebSphere Commerce Suite, WebSphere Portal, and WebSphere Everyplace Suite.

In his last year with IBM, he focused on providing design, programming consultation, and problem solving to Fortune 500 software vendors and software integrators who were IBM's business partners. Between 2002 and 2004, he served as a consultant to The World Bank Group and Blue Cross Blue Shield of Florida. His role was the administration of WebSphere environments including some special projects such as the rollout of the latest version of their WebSphere environments. In 2004, he interrupted his consulting practice when he was invited to join the IT engineering team at Cummins, Inc. He served as Senior Web Technologies Engineer and later on as the Web Deployment team manager. As Senior Engineer, he architected the infrastructure environment for WebSphere 5.1, defining standards for platform creation, WAS deployment, and integration with existing enterprise technologies and services. In 2008, he resumed his consulting practice, supporting WebSphere Application Server, WebSphere Portal, and WebSphere Edge Components efforts and initiatives with Bank of America (2008), Blue Cross Blue Shield of Florida (2008 2009), and The World Bank Group, where he is currently Senior WebSphere Suite consultant.

First and foremost, I would like to thank the Lord for providing this unique, challenging, and rewarding opportunity as well as the resources to complete this fun project. Secondly, I would also like to thank my wife, Melissa, for her love, support, and encouragement throughout this undertaking. In addition, I wish to extend my gratitude to my sons, Tano and Chago, for allowing me to give up time that otherwise I would have spent with them. Furthermore, I would like to express my appreciation to Packt for having reached out to me to propose this project. In particular, I thank my editorial team and their management for all the support provided in order to make this project a reality. I also would like to thank the technical team of experts who painstakingly reviewed each of the chapters for their corrections, observations, and most welcomed suggestions to improve the quality of this work. Finally, I want to thank the folks at The World Bank Group, in particular Srini, Balaji, Suresh, and Ajay, for their encouragement during this project. I think they promised to buy a copy each.

Visually different images
CONTINUE READING
83
Tech Concepts
36
Programming languages
73
Tech Tools
Icon Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.
Icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Icon 50+ new titles added per month and exclusive early access to books as they are being written.
IBM WebSphere Application Server v7.0 Security
Next Chapter
notes
bookmark Notes and Bookmarks search Search in title playlist Add to playlist font-size Font size

Change the font size

margin-width Margin width

Change margin width

day-mode Day/Sepia/Night Modes

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY

Submit Your Feedback

Modal Close icon
Modal Close icon
Modal Close icon