SAP NetWeaver Application Server Java Security GuideBefore You StartTechnical System LandscapeUser Administration and AuthenticationUser Administration and Standard UsersUser Administration ToolsStandard UsersStandard User GroupsUser Data SynchronizationAuthentication Mechanisms and Single Sign-On IntegrationDeclarative and Programmatic AuthenticationLogin Modules and Login Module StacksLogin ModulesLogin Module StacksAuthentication SchemesIntegration in Single Sign-On EnvironmentsAuthorizationsStandard RolesPermissions, Actions, and UME RolesStandard UME ActionsNetwork SecurityTransport Layer SecurityCommunication Channel SecurityUsing an Intermediary Server to Connect to the AS JavaCommunication Security for the Web ContainerCommunication Security for the EJB ContainerCommunication Security for Web ServicesCommunication Security for Persistency StoresCommunication Security for Software DeploymentAS Java PortsData Storage SecurityDispensable Functions with Impacts on SecurityOther Security Relevant InformationJMS Provider Security AspectsJava Virtual Machine SecuritySecurity Aspects for the Database ConnectionWorking with the SDMDestination ServiceProtecting Sessions SecurityParallel HTTP Requests and Session Fixation ProtectionTracing and LoggingUME Logging and MonitoringSecurity Aspects When Using HTTP and Web Container TracingMasking Security-sensitive Data in the HTTP Access Log