3 Review(s)

Cryptography, the science of secret writing, is the biggest, baddest security tool in the application programmer's arsenal. Cryptography provides three services that are crucial in secure programming. These include a cryptographic cipher that protects the secrecy of your data; cryptographic certificates, which prove identity (authentication); and digital signatures, which ensure your data has not been damaged or tampered with. This book covers cryptographic programming in Java. Java 1.1 and Java 1.2 provide extensive support for cryptography with an elegant architecture, the Java Cryptography Architecture (JCA). Another set of classes, the Java Cryptography Extension (JCE), provides additional cryptographic functionality. This book covers the JCA and the JCE from top to bottom, describing the use of the cryptographic classes as well as their innards. The book is designed for moderately experienced Java programmers who want to learn how to build cryptography into their applications. No prior knowledge of cryptography is assumed. The book is peppered with useful examples, ranging from simple demonstrations in the first chapter to full-blown applications in later chapters. Topics include: The Java Cryptography Architecture (JCA) The Java Cryptography Extension (JCE) Cryptographic providers The Sun key management tools Message digests, digital signatures, and certificates (X509v3) Block and stream ciphers Implementations of the ElGamal signature and cipher algorithms A network talk application that encrypts all data sent over the network An email application that encrypts its messages Covers JDK 1.2 and JCE 1.2. About the Author Jonathan Knudsen is an author at O'Reilly & Associates. His books include The Unofficial Guide to Lego Mindstorms Robots, Java 2D Graphics, and Java Cryptography. He is the Courseware Writer for LearningPatterns.com. Table of ContentsChapter 1 Introduction Secure Systems Cryptography Platform Security Astute Inequalities Hello, zoT1wy1njA0=! Chapter 2 Concepts Confidentiality Integrity Authentication Random Numbers Algorithms Chapter 3 Architecture Alphabet Soup Concept Classes API and SPI Factory Methods Standard Names The Provider Architecture Key Management Summary Chapter 4 Random Numbers SecureRandom Self-Seeding Keyboard Timing SeederDialog Chapter 5 Key Management Keys Key Generators Key Translators Key Agreement The Identity Key Management Paradigm The KeyStore Key Management Paradigm Chapter 6 Authentication Message Digests MACs Signatures Certificates Chapter 7 Encryption Streams and Blocks Block Ciphers Algorithms javax.crypto.Cipher Cipher’s Close Relatives Passphrase Encryption Inside Cipher Hybrid Systems Chapter 8 Signed Applets Renegade HotJava Navigator Internet Explorer Summary Chapter 9 Writing a Provider Getting Started Adding the ElGamal Classes ElGamal Generating Keys Signature Cipher Chapter 10 SafeTalk Using SafeTalk Under the Hood Chapter 11 CipherMail Using CipherMail Under the Hood Chapter 12 Outside the Box Application Design Decompilers and Bytecode Obfuscation Endpoint Security File Security Network Security Summary Appendix BigInteger Appendix Base64 Appendix JAR Creating Extracting The Manifest Signing Appendix Javakey Creating Inspecting Gimme the Keys... Certificates To and Fro Sign of the Times The Care and Feeding of Keys Appendix Quick Reference Package java.security Package java.security.cert Package java.security.interfaces Package java.security.spec Package javax.crypto Package javax.crypto.interfaces Package javax.crypto.spec Colophon