The hottest topic related to enterprise Java applications is security, for which Java EE provides a fair amount of flexibility. This session focuses on how the top 10 Open Web Application Security Project (OWASP) application security concerns—including broken authentication and session management, failure to restrict URL access, and security misconfiguration—can be addressed with Java EE and the GlassFish application server.
The session covers how and where to integrate the solution for each OWASP concern via a demo application. The demo application takes into account the relevant best practices/design patterns involved with developing a secure application while avoiding common pitfalls.
Video Producer: JavaZone Conference