Skip to main content

Kumar Jayanti

Kumar Jayanti is a staff engineer at Sun Microsystems and works in the Web Technologies and Standards team. In his current role, Kumar is the implementation lead for GlassFish V3 Security, Metro WebServices Security and also the specification and implementation lead for the SAAJ (JSR 67). He has been working in the areas of application and infrastructure security effort at Sun since early 2004. Kumar holds an M.Tech degree in Computer Science from IIT Mumbai, India. His areas of interest include Distributed computing, CORBA, XML, WebServices and Security.

 

Weblogs

I posted my blogs on GlassFish V3.1 Security at http://blogs.sun.com/gfsecurity/  due to the non-availability of java.net during the V3.1...

 GlassFish users who make use of CLIENT-CERT authentication with SSL  in their JavaEE applications  should consider upgrading to JDK1.6.0_22.

The GlassFish Certificate Realm in V2.X and V3.0 releases is somewhat limiting. Many users expressed the need to able to do some custom authentication based on the client-certificate (or...

Embedded GlassFish v3 is a delivery vehicle of GFv3 so that applications and tools can use GFv3 just as a library, inside their JVM.  More details on this can be found  on the separate...

Many users often ask the question :  Can i use a custom  JAAS Login Module instead of the Proprietary GlassFish Custom Realms for user authentication ?.

Servlet 3.0 specification which is part of JavaEE 6 has many new features and some of them are in the area of security.

Shing Wai's post explains the @ServletSecurity annotation that has been introduced newly in JavaEE 6 (Servlet 3.0...

In this post i would like to provide a brief summary of some of the Propietary Features and implementation details of...

The Java KeyStore API supports multiple keystore formats which include JKS( the default Java KeyStore), PKCS12, PKCS11 etc.

Metro Security has a pluggable architecture and it makes use of JSR 196  (SOAP Profile) to achieve this pluggability.   The use of JSR-196 provides a standard way to integrate Metro...

My previous post Security Token Configuration in Metro has exceeded the maximum limits (even after...

The earliest version of WS-SecurityPolicy implemented during early days of Metro/WSIT did not allow Binding Assertions to be attached to any scope other than the EndPoint scope. The latest...

In this post, i  would like to describe how to configure various types of security tokens that Metro supports. There are various aspects to token configuration depending on the type of the...

One of the design goals of Metro is to be able to run on any Application Server as a WebServices Stack. One project that i know levarages this ability is ...

With Latest Metro 2.0 bits you can now try signing and encrypting SOAP Messages using the WSS 1.1 Password Derived Keys Feature. This is useful incase one does not want to use Certificates or...

My colleague Nithya has written about an interesting recent feature addition to GlassFish V3 where you can dynamically add a new Custom Realm (built as...

Although not considered very secure many users in the past have asked
for it.



If you have a WebService configured to use the href="https://wsit-docs.dev.java.net/releases/m6/WSIT_Security4.html#wp129317">Mutual
Certificates Security ...



Starting with  Promoted href="https://sailfin.dev.java.net/downloads/v1-b36.html">Build 36 
of  SailFin,  Metro 1.3 users can perform Programmatic...


A Question that is often asked is, I am  Using  a WSIT Secure
Scenario containing SAML Assertion, How do i access the SAML Assertion ?



Here is how...


My Colleague Ashutosh has posted a nice blog on how to secure Metro
WebServices using Kerberos Tokens.



href="http://blogs.sun.com/ashutosh/entry/...

SSL and CRL Checking with GlassFish V2

Introduction

This blog is dedicated to some of the
less documented but important aspects of...

style="font-size: 11pt; font-family: "Calibri","sans-serif"; color: rgb(31, 73, 125);"
lang="EN-US">A...


Metro is a
high-performance, extensible, easy-to-use web service stack.  For
those of you who have heard about WSIT...

Here is a link to an article that contains the first set of details on WSIT Security Configuration...



WSIT...