Rating: 
Summary: Excellent and comprehensive book on J2EE security
Review: This is one the best books that I have ever read. The writing is very lucid and the author explains concepts in very clear and easy to understand manner. The utility tools are very, very useful. I have have been using them on a regular basis. The book also has good code snippets, diagrams and screen shots where necessary. But no space filling techniques ever.The coverage of topics is very good. Security, cannot have one sided view. The author did a good job of pulling together all aspects of securing a Java application (from code access security and class loading to cryptography to securing components to securing webservices) - he covers the whole gamut without getting lost. Ever since I bought this book, I have been carrying to work everyday. I buy LOT OF computer books, but rarely do I fall in love so much with them. I would put it on the same level as UML Distilled, J2EE Patterns and Bruce Eckel's Java. If you are doing Java Security, this is the one and only book you will ever read. To me, it has been inevitable. I sincerely thank the author and the publishers for not making this another 1200+ page book. This is about 400+ pages and doesn't put you off with its weight!
| 
