SAP NetWeaver Application Server Java Security GuideBefore You StartTechnical System LandscapeUser Administration and AuthenticationUser Administration and Standard UsersUser Administration ToolsUser Data SynchronizationAuthentication Mechanisms and Single Sign-On IntegrationDeclarative and Programmatic AuthenticationLogin Modules and Login Module StacksAuthentication SchemesIntegration in Single Sign-On EnvironmentsAuthorizationsNetwork SecurityTransport Layer SecurityCommunication Channel SecurityUsing an Intermediary Server to Connect to the AS JavaCommunication Security for the Web ContainerCommunication Security for the EJB ContainerCommunication Security for Web ServicesCommunication Security for Persistency StoresCommunication Security for Software DeploymentAS Java PortsData Storage SecurityDispensable Functions with Impacts on SecurityOther Security Relevant InformationJMS Provider Security AspectsJava Virtual Machine SecuritySecurity Aspects for Database ConnectionsDestination ServiceSession Security ProtectionImproved Protection Versus Login-XSRFParallel HTTP Requests and Session Fixation ProtectionTracing and LoggingLogging and TracingMasking Security-Sensitive Data in the HTTP Access Log