Securing Java Web Services

(443) 692-6600 | info@umbctrainingcenters.com

ABOUT US Locations Management Mission Partnerships PROGRAMS Agile Biotechnology Certified Financial Planner Cybersecurity Engineering Human Resources Information Technology Instructional Design Leadership Development Online Programs Project Management Sonography Systems Engineering Test Preparation CLASS SCHEDULE GROUP TRAINING Customers Discounts Locations Programs Mobile Lab REGISTRATION How to Register Discounts Financial Assistance CONTACT INFO Locations Employment Opportunities Facebook Twitter NEWS & EVENTS

Course Description | Outline | Cybersecurity Training | IT Training

Overview

This advanced course introduces Java developers to key technology for developing secure Web services. Specifically, we focus on XML signature and encryption standards, the WS-Security specification and token profiles, and the Security Assertions Markup Language (SAML). Students practice signing and encrypting XML message content, and configuring J2EE tools to support signature and encryption of SOAP messages under the Java API for XML-Based RPC (JAX-RPC).

The course emphasizes hands-on exercise, and students will spend roughly half of their classroom time solving specific security problems. Some early labs on XML signature and encryption work to local files; but the bulk of the work is with running JAX-RPC web services: adding WS-Security headers, signing and encrypting message content, and passing SAML assertions among various parties to a messaging scenario.

Although for practical purposes this course relies on a specific platform -- Java and J2EE -- much of the course content teaches interoperable specifications and would be equally useful to developers working on other Web-service-capable platforms such as .NET.

Learning Objectives

Understand the unique challenges in securing interoperable XML-based services.
Apply W3C standards to digitally sign and encrypt XML fragments and documents.
Understand the importance of the WS-Security specifications to interoperably secure messaging.
Use emerging Java APIs to configure or implement signature, encryption, and various WS-Security header content for Java Web services.
Exchange security information between servers, applications, and components, using SAML assertion and protocol models.

Prerequisites

Solid Java programming experience is essential.
Experience developing Java Web services is assumed -- either via SAAJ or JAX-RPC.
Students are expected to be able to read and write XML fluently, and have some familiarity with XML Schema.

Schedule

3 Days

Click here to request a price quote for group training.
Click here to request additional information or to be added to the interest list for this course. The interest list will notify you when this course and any closely related courses are scheduled for open enrollment.