This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "Java Security Frameworks"
From OWASP
(Aecgi rolled into Spring, link was broken) |
(adding hdiv) |
||
Line 3: | Line 3: | ||
==Enterprise== | ==Enterprise== | ||
* [[ESAPI|OWASP Enterprise Security API]] a new OWASP project to provide all essential security services under one roof. | * [[ESAPI|OWASP Enterprise Security API]] a new OWASP project to provide all essential security services under one roof. | ||
+ | * [http://www.hdiv.org/ HDIV] A web application security framework that provides a number of functions. | ||
== Access Control (Authentication and Authorisation) == | == Access Control (Authentication and Authorisation) == |
Revision as of 03:33, 26 February 2014
A list of third party (i.e. not part of Java SE or EE) security frameworks.
Enterprise
- OWASP Enterprise Security API a new OWASP project to provide all essential security services under one roof.
- HDIV A web application security framework that provides a number of functions.
Access Control (Authentication and Authorisation)
- jGuard - jGuard is written in Java. Its goal is to provide a security framework based on JAAS (Java Authentication and Authorization Security). The framework is written for web and standalone applications, to easily provide solutions for access control problems.
Encryption
- Bouncycastle - Lightweight Java cryptography APIs
- Jasypt - Jasypt is a java library which allows the developer to add basic encryption capabilities to his/her projects with minimum effort, and without the need of having deep knowledge on how cryptography works.