Java Security Frameworks

Revision as of 22:33, 25 February 2014 by Ari Elias-Bachrach (talk | contribs) (adding hdiv)

Jump to: navigation, search

A list of third party (i.e. not part of Java SE or EE) security frameworks.


  • OWASP Enterprise Security API a new OWASP project to provide all essential security services under one roof.
  • HDIV A web application security framework that provides a number of functions.

Access Control (Authentication and Authorisation)

  • jGuard - jGuard is written in Java. Its goal is to provide a security framework based on JAAS (Java Authentication and Authorization Security). The framework is written for web and standalone applications, to easily provide solutions for access control problems.


  • Bouncycastle - Lightweight Java cryptography APIs
  • Jasypt - Jasypt is a java library which allows the developer to add basic encryption capabilities to his/her projects with minimum effort, and without the need of having deep knowledge on how cryptography works.