Security @ JavaToolbox.com - Java tools, libraries and plug-ins

Terminal Components

�

Categories: Internet and communications, Security

Author: 3SP

Latest version: 1.1.6
Added 2006-10-03

Implementations of a standard ANSI/VT terminal with both Swing and AWT versions available.

Features Include:
- Compatible with JDK1.1+
- 100% Java
- Separate AWT and Swing versions
- Distribution sizes: 119K for AWT version and 111K for Swing
- Includes Telnet, rcommand , rlogin and rexec transport scheme plug-ins
- Optional SSH plug-in available using the J2SSH Maverick API
- Supports VT100, VT220, VT320 and ANSI emulations
- Virtual terminal framework enables multiple tabbed sessions in each terminal instance
- Transport scheme interface allows for additional protocols to be plugged in at runtime
- XML based profile for connection persistence
- Supports charset conversion

Built for Java

Library

Source code provided

Add to my favorites[NEW] What's this? Want to keep track of the latest versions of your favorite tools? Add tools to your favorites. This acts as a watch list. We'll email you when your favorite tools are updated. You can also visit your favorites page at any time to see what has been updated, or to remove tools from your list.

What's this? Want to keep track of the latest versions of your favorite tools? Add tools to your favorites. This acts as a watch list. We'll email you when your favorite tools are updated. You can also visit your favorites page at any time to see what has been updated, or to remove tools from your list.

Maverick SSHD

�

Home�Page

Categories: Internet and communications, Security

Author: 3SP

Latest version: 1.2.11
Added 2006-10-03

Multi-threaded Java SSH server.

Features include:
- 100% Java
- Supports JDK 1.4.2_05 and above
- SSH2 support only, for maximum security
- SFTP & SCP file transfer protocols supported
- Scalable implementation based upon the Java NIO framework
- Reduce overheads by controlling your server's threading requirements
- Local and remote port forwarding
- Password authentication; Public-key authentication
- Blowfish/3DES encryption ciphers; Optional Twofish, AES & CAST ciphers (requires additional configuration)
- SHA1/MD5 Message Authentication Codes (MACs)
- HTTP, SOCKS 4 and SOCKS 5 proxy support
- ZLIB Compression
- Interfaces are provided to: allow customization of the login process; allow customization of the shell and command execution; customize file access
- Built-in virtual file system to provides platform independent file access

Built for Java

Library

Source code provided

jPDFSecure

�

Home�Page

Categories: PDF, Security

Author: Qoppa

Latest version: 2.00
Added 2009-02-23

Java library that can change security settings on PDF Documents.
With jPDFSecure, your application can encrypt and decrypt PDF documents as well as set permissions on the documents.

Features include:
- Encrypt/decrypt PDF documents
- 128-bit RC4 encryption security level
- Set/remove permissions
- Set/remove passwords
- Password to open PDF documents
- Master password to change permissions

Built for Java

Library

jGuard

�

Home�Page

Categories: Security

Latest version: 0.64
Added 2005-02-02

jGuard is a Java security framework based on JAAS. This framework is written for web applications, to resolve access control problems.

Main features are:
* relies only on Java 1.4 and J2EE 1.3 or higher
* can be adapted on any webapp, on any application server
* does not depend on a web framework, or an AOP framework
* built on top of JAAS
* authentications and authorizations are handled by pluggable mechanisms
* changes take effects "on the fly" (dynamic configuration)
* each webapp has its own authentications and authorizations configuration
* a taglib is provided to protect JSP fragment
* supports security manager

Built for Java

Free or free version available

Source code provided

JSecureConnect

�

Home�Page

Categories: JDBC, Security

Author: JNetDirect

Latest version: 2.0
Added 2006-02-13

Provides secure and firewall tunneling JDBC to a range of databases.
Secure JDBC access is provided with the SSL and HTTPS protocols. Firewall tunneling is provided with the HTTP and HTTPS protocols.

Features include:
- Security: JDBC data privacy; JDBC authentication; JDBC message integrity; Full-strength encryption keys
- Supports Oracle, DB2, SQL Server, MySQL and Microsoft Access
- HTTP tunneling
- JDBC compliance
- May be configured for operation with your web server

Built for Java

Acegi Security System for Spring

�

Home�Page

Categories: Frameworks, Security

Latest version: 1.0.5
Added 2006-06-05

Provides authentication, authorization, instance-based access control, channel security and human user detection capabilities for applications developed with Spring.

Features include:
- Enterprise-wide single sign on using JA-SIG's open source Central Authentication Service (CAS)
- Domain object instance security: define Access Control Lists (ACLs) for individual domain object instances with integer bit masking, permission inheritence (including blocking), a JDBC-backed ACL repository, caching and a pluggable, interface-driven design
- Supports HTTP BASIC and DIGEST authentications
- Supports X509 (certificate)
- Supports LDAP

Built for Java

Library

Plug-in

Free or free version available

Source code provided

J2SSH Maverick

�

Home�Page

Categories: Internet and communications, Security

Author: 3SP

Latest version: 1.2.11
Added 2006-10-03

SSH API for Java.
J2SSH Maverick is compatible for all versions of the Java Development Kit with support for SSH1, SSH2, SFTP and SCP.

Features include:
- 100% Java; Requires no external dependencies, no JCE required: Compatible with JDK1.1+ and J2ME
- Support for both SSH protocols, SSH1 and SSH2
- JAR sizes: 148k minimum to support both protocols, 325k for complete feature set
- Password, Public key, Hostbased, and Keyboard Interactive authentication
- 3DES, DES and Blowfish ciphers; Optional Twofish, AES and CAST ciphers
- Stateful decryption counter (SDCTR) mode cipher for AES
- SHA1, MD5 Message Authentication Codes (MACS)
- SFTP, SCP File Transfer protocols
- RSA, DSA public/private key file generation, in SSHTools, OpenSSH and SSH1 formats
- Supports reading of PuTTY and SSH.com public/private keys
- Port forwarding; X Forwarding
- ZLIB compression
- HTTP, SOCKS 4 and SOCKS 5 proxy support

Built for Java

Library

Source code provided

Bouncy Castle

�

Home�Page

Categories: Security

Latest version: 1.38
Added 2005-06-23Updated 2008-01-02

Cryptography library that consists of the following:
- A lightweight cryptography API in Java
- A provider for the JCE and JCA
- A clean room implementation of the JCE 1.2.1
- A library for reading and writing encoded ASN.1 objects
- A lightweight client-side TLS API
- Generators for Version 1 and Version 3 X.509 certificates, Version 2 CRLs, and PKCS12 files
- Generators for Version 2 X.509 attribute certificates
- Generators/Processors for S/MIME and CMS (PKCS7/RFC 3852)
- Generators/Processors for OCSP (RFC 2560)
- Generators/Processors for TSP (RFC 3161)
- Generators/Processors for OpenPGP (RFC 2440)
- A signed jar version suitable for JDK 1.4-1.6 and the Sun JCE

Built for Java

Library

Free or free version available

Source code provided

JOSSO

�

Home�Page

Categories: Security

Latest version: 1.5
Added 2005-03-17Updated 2007-02-13

JOSSO, or Java Open Single Sign-On, is an open source J2EE-based SSO infrastructure aimed to provide a solution for centralized platform neutral user authentication.

Features include:
- Pluggable Framework: allows to implement and combine multiple authentication schemes with credential stores.
- Multi-platform Single Sign-On: JOSSO uses web services for asserting user identity, allowing the integration of non-Java applications to the Single Sign-On Service using the SOAP over HTTP protocol.
- Reverse Proxy Support: JOSSO comes with a Reverse Proxy component that can be used to create n-tier Single Sign-On configurations.
- Standard Based: security infrastructure is based on JAAS (Java Authentication and Authorization Service); web services are implemented using Axis; uses Struts and JSP.
- Support for Strong Authentication using X.509 client certificates.
- Client Plugin for Microsoft ASP: allows to build SSO-enabled ASP web applications.
- Authentication and SSL support for the Agent-Gateway SOAP channel.
- Support for multiple simultaneous authentication schemes.
- Compatibility with Apache Pluto Container.

Built for Java

Library

Free or free version available

Source code provided

Java LDAP

�

Home�Page

Categories: Security

Author: Novell

Latest version: 2.2
Added 2005-02-21

The LDAP class libraries for Java (JLDAP) enable you to write applications to access, manage, update, and search for information stored in directories accessible using LDAPv3

Built for Java

Library

Free or free version available

Source code provided

jChains

�

Home�Page

Categories: Security

Author: Marc Schoenefeld

This custom security manager framework records the permissions needed for the codebases (jars) of j2se applications running under access control of a security manager. The resulting policy file is recorded while running the program and is useful as a starting point when developing a security policy for a java application. When run against libraries when source is not available it is useful for reverse engineering, revealing the permission needed to use the libraries. This is helpful when you do not trust the jar, and do not want to grant it the AllPermission free ride ticket.

Built for Java

Free or free version available

Source code provided

Agilis Orion

�

Home�Page

Categories: Security

Author: Agilis Software

Latest version: 2.0.11
Added 2010-05-04

Multi-platform Java network licensing platform that supports product activation and floating licensing from either a hosted or redistributed license server, on both connected and disconnected systems. License models include node-locked, trial, subscription, feature-based and usage-based licensing.

Built for Java