Here is a collection of papers I created since 2002:

PLEASE NOTE:
I'm updating these documents and should have new versions available, I've been very busy lately so it will be sometime in early 2008, the links below will be offline until I'm finished - please check back later.

JAAS and J2EE security - match or myth
The Java Authentication and Authorization Service is a nice pluggable package but lacks features required for an Enterprise Security implementation. This paper describes some of the JAAS weaknesses.

 

JAAS authentication against Active Directory
Instructions on how to create a JAAS log-in module that uses Kerberos to authenticate against KDC/Active Directory.

 

Alternative Authentication Methods
Research of various authentication methods (based on research I performed for US Veterans Administration during 2006).

 

RootKit and such
My experience in June 2002 dealing with a rootkit in Linux. Includes details on this (Russian) Rootkit implementation, the script that trapped the rootkit installation and how to prevent this from happening to your Linux systems.

 

OPENSSO
Sun contributed source code from their Access Manager and Federation offerings to the OPENSSO project.  I've been an active member of this project since it's inception.   In this paper I describe my experience with installing and using the OPENSSO (Server and agent installation in Windows and Linux).