SlideShare a Scribd company logo

JavaCro'15 - Managing Java at Scale Security and Compatibility Applications - Duško Vukmanović

HUJAK - Hrvatska udruga Java korisnika / Croatian Java User Association
HUJAK - Hrvatska udruga Java korisnika / Croatian Java User Association
1 of 22
Download to read offline
Java SE Advanced Client Management Best Practices Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | Duško Vukmanović Principal Sales Consultant FMW
Client Management Best Practices 1. Automate scheduled updates. – Plan ahead based on known schedule. 2. Collect usage information. – Collect real information: which applications need which old Java versions, which users need which applications. Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | users need which applications. 3. Protect old versions through Deployment Rule Set. – Statically install old versions only as needed, protect them through Deployment Rule Sets.
Java SE Advanced • Same Java. • Management & Monitoring Tools. – Help understand/manage client usage. – Help investigate production software. Experienced Support. Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | • Experienced Support. – What information applies to this situation? – What information from the last 19 years does not apply (anymore)?
Automate scheduled updates. 1. Automate scheduled updates. 2. Collect usage information. 3. Protect old versions through DRS. Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | 3. Protect old versions through DRS.
Schedule updates • Quarterly patch schedule for the next year: http://www.oracle.com/technetwork/topics/security/alerts-086861.html • MSI installer – Customizable. – Automated silent installs. Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | – Automated silent installs.
Deploy updates in timely fashion Customize and roll out ASAP after Critical Patch Update If you do not: Clients periodically check security baseline. Built-in expiration a month after scheduled Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | Built-in expiration a month after scheduled Critical Patch. Clients will change behavior to decrease their attack surface. Java or browser will prompt or block.
Collect usage information. 1. Automate scheduled updates. 2. Collect usage information. 3. Protect old versions through DRS. Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | 3. Protect old versions through DRS.
Advanced Management Console • Usage Tracking across installations – Tracks applications and their location. – Tracks which Java version was used. • Deployment Rule Set tool Administer Java clients at scale. Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | • Deployment Rule Set tool – Control prompts: run or block. – Verify against usage tracking.
Management Console, Collector, and Clients Control Java in the enterprise through real data. 1. Clients report usage via UDP. Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | 2. Usage tracker keeps records. 3. Management console helps configure the desired outcome. Deploy configuration.
Desktop Administrators can control multiple Java versions. Deployment Rule Sets Many managed clients. Security: limiting the exposure of old versions. Different users need several at once. Different applications need different Java versions. Follow-up Questions: Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | Follow-up Questions: Which versions do I actually need? Which applications need which versions? How do I identify those applications? Which users need which applications? How do I validate answers to the above questions? Once validated, how do I integrate the answers into my tool chains?
“This needs Java 8, that needs 6 update 38, those needs 7, etc.” Control Compatibility Application A Application B Application C Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | Follow-up Questions: • How do I identify these applications across many users? • Once identified, how do I know which needs which Java version? • After associating application to Java version, how do I manage the compatibility across many users?
• Run count: – How important is this application? – How many people need it? • URL / Codebase: – Where is this application? Track and use real data Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | – Where is this application? • Java Version: – Which version is the right one? • Etc.
Identify which Java versions are needed Control Prompts and Compatibility • Inspect applications to see environments. • Guided rules to control dialog prompts and compatibility. – “Run on Java 1.7 without prompting.” Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | – “Run on Java 1.7 without prompting.”
Validate rules against Tracking System • Compare whitelist / blacklist to real data. – “Did I do what I intended?” Ensure correctness before user testing Copyright © 2014, Oracle and/or its affiliates. All rights reserved. |
Advanced Management Console • Usage Tracking across installations. – Tracks applications and their location. – Tracks which Java version was used. • Deployment Rule Set tool Desktop Administrator can manage Java at scale. Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | • Deployment Rule Set tool – Control prompts: run or block. – Verify against usage tracking.
Protect old versions through DRS. 1. Automate scheduled updates. 2. Collect usage information. 3. Protect old versions through DRS. Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | 3. Protect old versions through DRS.
Isolating old Java versions • Do not connect old Java versions to current internet. – Public: stay with scheduled critical patches of supported versions. – SE Advanced: provides critical patches for end-of-public-life JREs. • Control compatibility through Deployment Rule Sets. – Use old version only for identified applications/users. Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | – Use old version only for identified applications/users. Major Release GA Date End of Public Updates Notification End of Public Updates 5.0 May 2004 Apr 2008 Oct 2009 6 Dec 2006 Feb 2011 Feb 2013 7 July 2011 March 2014 April 2015* 8 March 2014 TBD March 2017* http://www.oracle.com/technetwork/java/eol-135779.html
Statically install old versions • Regular “patch-in-place” of public version. • Old version must be on system to be used. – Static Installation keeps it separate. – Current public version protects older version through DRS. Only as needed. Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | – Current public version protects older version through DRS. http://docs.oracle.com/javase/8/docs/technotes/guides/install/wi ndows_installer_options.html#static_installation
Client Management Best Practices 1. Automate scheduled updates. 2. Collect usage information. 3. Protect old versions through DRS. Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | 3. Protect old versions through DRS.
Java SE Advanced • Same Java. • Management & Monitoring Tools. – Help understand/manage client usage. – Help investigate production software. Experienced Support. Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | • Experienced Support. – What information applies to this situation? – What information from the last 19 years does not apply (anymore)?
Copyright © 2014, Oracle and/or its affiliates. All rights reserved. |
JavaCro'15 - Managing Java at Scale Security and Compatibility Applications - Duško Vukmanović

Recommended

JavaCro'15 - Oracle Java Cloud Service Java PaaS - Duško Vukmanović
JavaCro'15 - Oracle Java Cloud Service Java PaaS - Duško VukmanovićJavaCro'15 - Oracle Java Cloud Service Java PaaS - Duško Vukmanović
JavaCro'15 - Oracle Java Cloud Service Java PaaS - Duško VukmanovićHUJAK - Hrvatska udruga Java korisnika / Croatian Java User Association
 
Tweet4Beer - Beertap powered by Java goes IoT and JavaFX
Tweet4Beer - Beertap powered by Java goes IoT and JavaFXTweet4Beer - Beertap powered by Java goes IoT and JavaFX
Tweet4Beer - Beertap powered by Java goes IoT and JavaFXBruno Borges
 
Oracle Cloud: Anything as a Service
Oracle Cloud: Anything as a ServiceOracle Cloud: Anything as a Service
Oracle Cloud: Anything as a ServiceBruno Borges
 
Migrating From Applets to Java Desktop Apps in JavaFX
Migrating From Applets to Java Desktop Apps in JavaFXMigrating From Applets to Java Desktop Apps in JavaFX
Migrating From Applets to Java Desktop Apps in JavaFXBruno Borges
 
WebSockets - Realtime em Mundo Conectado
WebSockets - Realtime em Mundo ConectadoWebSockets - Realtime em Mundo Conectado
WebSockets - Realtime em Mundo ConectadoBruno Borges
 
Java EE Arquillian Testing with Docker & The Cloud
Java EE Arquillian Testing with Docker & The CloudJava EE Arquillian Testing with Docker & The Cloud
Java EE Arquillian Testing with Docker & The CloudBruno Borges
 
Tecnologias Oracle em Docker Containers On-premise e na Nuvem
Tecnologias Oracle em Docker Containers On-premise e na NuvemTecnologias Oracle em Docker Containers On-premise e na Nuvem
Tecnologias Oracle em Docker Containers On-premise e na NuvemBruno Borges
 
HTTP/2 in the Java Platform -- Java Champions call February 2016
HTTP/2 in the Java Platform -- Java Champions call February 2016HTTP/2 in the Java Platform -- Java Champions call February 2016
HTTP/2 in the Java Platform -- Java Champions call February 2016Ed Burns
 

Recommended

JavaCro'15 - Oracle Java Cloud Service Java PaaS - Duško Vukmanović
JavaCro'15 - Oracle Java Cloud Service Java PaaS - Duško VukmanovićJavaCro'15 - Oracle Java Cloud Service Java PaaS - Duško Vukmanović
JavaCro'15 - Oracle Java Cloud Service Java PaaS - Duško VukmanovićHUJAK - Hrvatska udruga Java korisnika / Croatian Java User Association
 
Tweet4Beer - Beertap powered by Java goes IoT and JavaFX
Tweet4Beer - Beertap powered by Java goes IoT and JavaFXTweet4Beer - Beertap powered by Java goes IoT and JavaFX
Tweet4Beer - Beertap powered by Java goes IoT and JavaFXBruno Borges
 
Oracle Cloud: Anything as a Service
Oracle Cloud: Anything as a ServiceOracle Cloud: Anything as a Service
Oracle Cloud: Anything as a ServiceBruno Borges
 
Migrating From Applets to Java Desktop Apps in JavaFX
Migrating From Applets to Java Desktop Apps in JavaFXMigrating From Applets to Java Desktop Apps in JavaFX
Migrating From Applets to Java Desktop Apps in JavaFXBruno Borges
 
WebSockets - Realtime em Mundo Conectado
WebSockets - Realtime em Mundo ConectadoWebSockets - Realtime em Mundo Conectado
WebSockets - Realtime em Mundo ConectadoBruno Borges
 
Java EE Arquillian Testing with Docker & The Cloud
Java EE Arquillian Testing with Docker & The CloudJava EE Arquillian Testing with Docker & The Cloud
Java EE Arquillian Testing with Docker & The CloudBruno Borges
 
Tecnologias Oracle em Docker Containers On-premise e na Nuvem
Tecnologias Oracle em Docker Containers On-premise e na NuvemTecnologias Oracle em Docker Containers On-premise e na Nuvem
Tecnologias Oracle em Docker Containers On-premise e na NuvemBruno Borges
 
HTTP/2 in the Java Platform -- Java Champions call February 2016
HTTP/2 in the Java Platform -- Java Champions call February 2016HTTP/2 in the Java Platform -- Java Champions call February 2016
HTTP/2 in the Java Platform -- Java Champions call February 2016Ed Burns
 
Servidores de Aplicação: por que ainda precisamos deles?
Servidores de Aplicação: por que ainda precisamos deles?Servidores de Aplicação: por que ainda precisamos deles?
Servidores de Aplicação: por que ainda precisamos deles?Bruno Borges
 
Melhore o Desenvolvimento do Time com DevOps na Nuvem
Melhore o Desenvolvimento do Time com DevOps na NuvemMelhore o Desenvolvimento do Time com DevOps na Nuvem
Melhore o Desenvolvimento do Time com DevOps na NuvemBruno Borges
 
Oracle Cloud에서 애플리케이션을 개발하고 테스트하는 손쉬운 방법
Oracle Cloud에서 애플리케이션을 개발하고 테스트하는 손쉬운 방법Oracle Cloud에서 애플리케이션을 개발하고 테스트하는 손쉬운 방법
Oracle Cloud에서 애플리케이션을 개발하고 테스트하는 손쉬운 방법Mee Nam Lee
 
Java on Azure
Java on AzureJava on Azure
Java on AzurePhilly JUG
 
Oracle making openstack an enterprise grade solution
Oracle making openstack an enterprise grade solutionOracle making openstack an enterprise grade solution
Oracle making openstack an enterprise grade solutionOTN Systems Hub
 
Modularization With Project Jigsaw in JDK 9
Modularization With Project Jigsaw in JDK 9Modularization With Project Jigsaw in JDK 9
Modularization With Project Jigsaw in JDK 9Simon Ritter
 
Using oracle vm virtual box as your development platform
Using oracle vm virtual box as your development platformUsing oracle vm virtual box as your development platform
Using oracle vm virtual box as your development platformOTN Systems Hub
 
Testing Java EE Applications Using Arquillian
Testing Java EE Applications Using ArquillianTesting Java EE Applications Using Arquillian
Testing Java EE Applications Using ArquillianReza Rahman
 
Down-to-Earth Microservices with Java EE
Down-to-Earth Microservices with Java EEDown-to-Earth Microservices with Java EE
Down-to-Earth Microservices with Java EEReza Rahman
 
JDK 8 and JDK 8 Updates in OpenJDK
JDK 8 and JDK 8 Updates in OpenJDKJDK 8 and JDK 8 Updates in OpenJDK
JDK 8 and JDK 8 Updates in OpenJDKWolfgang Weigend
 
Oracle develop in virtual box deploy to the cloud
Oracle develop in virtual box deploy to the cloudOracle develop in virtual box deploy to the cloud
Oracle develop in virtual box deploy to the cloudOTN Systems Hub
 
Oracle business continuity for virtualization and cloud infrastructure
Oracle business continuity for virtualization and cloud infrastructureOracle business continuity for virtualization and cloud infrastructure
Oracle business continuity for virtualization and cloud infrastructureOTN Systems Hub
 
Introduction to android - SpringPeople
Introduction to android - SpringPeopleIntroduction to android - SpringPeople
Introduction to android - SpringPeopleSpringPeople
 
Oracle WebLogic Server 12c: Seamless Oracle Database Integration (with NEC, O...
Oracle WebLogic Server 12c: Seamless Oracle Database Integration (with NEC, O...Oracle WebLogic Server 12c: Seamless Oracle Database Integration (with NEC, O...
Oracle WebLogic Server 12c: Seamless Oracle Database Integration (with NEC, O...jeckels
 
Javantura v4 - Spring Boot and JavaFX - can they play together - Josip Kovaček
Javantura v4 - Spring Boot and JavaFX - can they play together - Josip KovačekJavantura v4 - Spring Boot and JavaFX - can they play together - Josip Kovaček
Javantura v4 - Spring Boot and JavaFX - can they play together - Josip KovačekHUJAK - Hrvatska udruga Java korisnika / Croatian Java User Association
 
WebSocket in Enterprise Applications 2015
WebSocket in Enterprise Applications 2015WebSocket in Enterprise Applications 2015
WebSocket in Enterprise Applications 2015Pavel Bucek
 
Integrando Oracle BPM com Java EE e WebSockets
Integrando Oracle BPM com Java EE e WebSocketsIntegrando Oracle BPM com Java EE e WebSockets
Integrando Oracle BPM com Java EE e WebSocketsBruno Borges
 
Embedding Web UIs in your Eclipse application
Embedding Web UIs in your Eclipse applicationEmbedding Web UIs in your Eclipse application
Embedding Web UIs in your Eclipse applicationBoris Bokowski
 
FOSSASIA 2015: MySQL Group Replication
FOSSASIA 2015: MySQL Group ReplicationFOSSASIA 2015: MySQL Group Replication
FOSSASIA 2015: MySQL Group ReplicationShivji Kumar Jha
 
The RAML 1.0 Ecosystem
The RAML 1.0 EcosystemThe RAML 1.0 Ecosystem
The RAML 1.0 EcosystemMuleSoft
 
Openbravo Performance Monitoring
Openbravo Performance MonitoringOpenbravo Performance Monitoring
Openbravo Performance MonitoringOpenbravo
 
Continuous Integration Fundamentals: Maven - OFM Canberra July 2014
Continuous Integration Fundamentals: Maven - OFM Canberra July 2014Continuous Integration Fundamentals: Maven - OFM Canberra July 2014
Continuous Integration Fundamentals: Maven - OFM Canberra July 2014Joelith
 

More Related Content

What's hot

Servidores de Aplicação: por que ainda precisamos deles?
Servidores de Aplicação: por que ainda precisamos deles?Servidores de Aplicação: por que ainda precisamos deles?
Servidores de Aplicação: por que ainda precisamos deles?Bruno Borges
 
Melhore o Desenvolvimento do Time com DevOps na Nuvem
Melhore o Desenvolvimento do Time com DevOps na NuvemMelhore o Desenvolvimento do Time com DevOps na Nuvem
Melhore o Desenvolvimento do Time com DevOps na NuvemBruno Borges
 
Oracle Cloud에서 애플리케이션을 개발하고 테스트하는 손쉬운 방법
Oracle Cloud에서 애플리케이션을 개발하고 테스트하는 손쉬운 방법Oracle Cloud에서 애플리케이션을 개발하고 테스트하는 손쉬운 방법
Oracle Cloud에서 애플리케이션을 개발하고 테스트하는 손쉬운 방법Mee Nam Lee
 
Oracle making openstack an enterprise grade solution
Oracle making openstack an enterprise grade solutionOracle making openstack an enterprise grade solution
Oracle making openstack an enterprise grade solutionOTN Systems Hub
 
Modularization With Project Jigsaw in JDK 9
Modularization With Project Jigsaw in JDK 9Modularization With Project Jigsaw in JDK 9
Modularization With Project Jigsaw in JDK 9Simon Ritter
 
Using oracle vm virtual box as your development platform
Using oracle vm virtual box as your development platformUsing oracle vm virtual box as your development platform
Using oracle vm virtual box as your development platformOTN Systems Hub
 
Testing Java EE Applications Using Arquillian
Testing Java EE Applications Using ArquillianTesting Java EE Applications Using Arquillian
Testing Java EE Applications Using ArquillianReza Rahman
 
Down-to-Earth Microservices with Java EE
Down-to-Earth Microservices with Java EEDown-to-Earth Microservices with Java EE
Down-to-Earth Microservices with Java EEReza Rahman
 
JDK 8 and JDK 8 Updates in OpenJDK
JDK 8 and JDK 8 Updates in OpenJDKJDK 8 and JDK 8 Updates in OpenJDK
JDK 8 and JDK 8 Updates in OpenJDKWolfgang Weigend
 
Oracle develop in virtual box deploy to the cloud
Oracle develop in virtual box deploy to the cloudOracle develop in virtual box deploy to the cloud
Oracle develop in virtual box deploy to the cloudOTN Systems Hub
 
Oracle business continuity for virtualization and cloud infrastructure
Oracle business continuity for virtualization and cloud infrastructureOracle business continuity for virtualization and cloud infrastructure
Oracle business continuity for virtualization and cloud infrastructureOTN Systems Hub
 
Introduction to android - SpringPeople
Introduction to android - SpringPeopleIntroduction to android - SpringPeople
Introduction to android - SpringPeopleSpringPeople
 
Oracle WebLogic Server 12c: Seamless Oracle Database Integration (with NEC, O...
Oracle WebLogic Server 12c: Seamless Oracle Database Integration (with NEC, O...Oracle WebLogic Server 12c: Seamless Oracle Database Integration (with NEC, O...
Oracle WebLogic Server 12c: Seamless Oracle Database Integration (with NEC, O...jeckels
 
WebSocket in Enterprise Applications 2015
WebSocket in Enterprise Applications 2015WebSocket in Enterprise Applications 2015
WebSocket in Enterprise Applications 2015Pavel Bucek
 
Integrando Oracle BPM com Java EE e WebSockets
Integrando Oracle BPM com Java EE e WebSocketsIntegrando Oracle BPM com Java EE e WebSockets
Integrando Oracle BPM com Java EE e WebSocketsBruno Borges
 
Embedding Web UIs in your Eclipse application
Embedding Web UIs in your Eclipse applicationEmbedding Web UIs in your Eclipse application
Embedding Web UIs in your Eclipse applicationBoris Bokowski
 
FOSSASIA 2015: MySQL Group Replication
FOSSASIA 2015: MySQL Group ReplicationFOSSASIA 2015: MySQL Group Replication
FOSSASIA 2015: MySQL Group ReplicationShivji Kumar Jha
 
The RAML 1.0 Ecosystem
The RAML 1.0 EcosystemThe RAML 1.0 Ecosystem
The RAML 1.0 EcosystemMuleSoft
 

What's hot (20)

Servidores de Aplicação: por que ainda precisamos deles?
Servidores de Aplicação: por que ainda precisamos deles?Servidores de Aplicação: por que ainda precisamos deles?
Servidores de Aplicação: por que ainda precisamos deles?
 
Melhore o Desenvolvimento do Time com DevOps na Nuvem
Melhore o Desenvolvimento do Time com DevOps na NuvemMelhore o Desenvolvimento do Time com DevOps na Nuvem
Melhore o Desenvolvimento do Time com DevOps na Nuvem
 
Oracle Cloud에서 애플리케이션을 개발하고 테스트하는 손쉬운 방법
Oracle Cloud에서 애플리케이션을 개발하고 테스트하는 손쉬운 방법Oracle Cloud에서 애플리케이션을 개발하고 테스트하는 손쉬운 방법
Oracle Cloud에서 애플리케이션을 개발하고 테스트하는 손쉬운 방법
 
Java on Azure
Java on AzureJava on Azure
Java on Azure
 
Oracle making openstack an enterprise grade solution
Oracle making openstack an enterprise grade solutionOracle making openstack an enterprise grade solution
Oracle making openstack an enterprise grade solution
 
Modularization With Project Jigsaw in JDK 9
Modularization With Project Jigsaw in JDK 9Modularization With Project Jigsaw in JDK 9
Modularization With Project Jigsaw in JDK 9
 
Using oracle vm virtual box as your development platform
Using oracle vm virtual box as your development platformUsing oracle vm virtual box as your development platform
Using oracle vm virtual box as your development platform
 
Testing Java EE Applications Using Arquillian
Testing Java EE Applications Using ArquillianTesting Java EE Applications Using Arquillian
Testing Java EE Applications Using Arquillian
 
Down-to-Earth Microservices with Java EE
Down-to-Earth Microservices with Java EEDown-to-Earth Microservices with Java EE
Down-to-Earth Microservices with Java EE
 
JDK 8 and JDK 8 Updates in OpenJDK
JDK 8 and JDK 8 Updates in OpenJDKJDK 8 and JDK 8 Updates in OpenJDK
JDK 8 and JDK 8 Updates in OpenJDK
 
Oracle develop in virtual box deploy to the cloud
Oracle develop in virtual box deploy to the cloudOracle develop in virtual box deploy to the cloud
Oracle develop in virtual box deploy to the cloud
 
Oracle business continuity for virtualization and cloud infrastructure
Oracle business continuity for virtualization and cloud infrastructureOracle business continuity for virtualization and cloud infrastructure
Oracle business continuity for virtualization and cloud infrastructure
 
Introduction to android - SpringPeople
Introduction to android - SpringPeopleIntroduction to android - SpringPeople
Introduction to android - SpringPeople
 
Oracle WebLogic Server 12c: Seamless Oracle Database Integration (with NEC, O...
Oracle WebLogic Server 12c: Seamless Oracle Database Integration (with NEC, O...Oracle WebLogic Server 12c: Seamless Oracle Database Integration (with NEC, O...
Oracle WebLogic Server 12c: Seamless Oracle Database Integration (with NEC, O...
 
Javantura v4 - Spring Boot and JavaFX - can they play together - Josip Kovaček
Javantura v4 - Spring Boot and JavaFX - can they play together - Josip KovačekJavantura v4 - Spring Boot and JavaFX - can they play together - Josip Kovaček
Javantura v4 - Spring Boot and JavaFX - can they play together - Josip Kovaček
 
WebSocket in Enterprise Applications 2015
WebSocket in Enterprise Applications 2015WebSocket in Enterprise Applications 2015
WebSocket in Enterprise Applications 2015
 
Integrando Oracle BPM com Java EE e WebSockets
Integrando Oracle BPM com Java EE e WebSocketsIntegrando Oracle BPM com Java EE e WebSockets
Integrando Oracle BPM com Java EE e WebSockets
 
Embedding Web UIs in your Eclipse application
Embedding Web UIs in your Eclipse applicationEmbedding Web UIs in your Eclipse application
Embedding Web UIs in your Eclipse application
 
FOSSASIA 2015: MySQL Group Replication
FOSSASIA 2015: MySQL Group ReplicationFOSSASIA 2015: MySQL Group Replication
FOSSASIA 2015: MySQL Group Replication
 
The RAML 1.0 Ecosystem
The RAML 1.0 EcosystemThe RAML 1.0 Ecosystem
The RAML 1.0 Ecosystem
 

Similar to JavaCro'15 - Managing Java at Scale Security and Compatibility Applications - Duško Vukmanović

Openbravo Performance Monitoring
Openbravo Performance MonitoringOpenbravo Performance Monitoring
Openbravo Performance MonitoringOpenbravo
 
Continuous Integration Fundamentals: Maven - OFM Canberra July 2014
Continuous Integration Fundamentals: Maven - OFM Canberra July 2014Continuous Integration Fundamentals: Maven - OFM Canberra July 2014
Continuous Integration Fundamentals: Maven - OFM Canberra July 2014Joelith
 
Accelerate Web and Mobile Testing for Continuous Integration and Delivery
Accelerate Web and Mobile Testing for Continuous Integration and DeliveryAccelerate Web and Mobile Testing for Continuous Integration and Delivery
Accelerate Web and Mobile Testing for Continuous Integration and DeliverySOASTA
 
Apache Geode Clubhouse - WAN-based Replication
Apache Geode Clubhouse - WAN-based ReplicationApache Geode Clubhouse - WAN-based Replication
Apache Geode Clubhouse - WAN-based ReplicationPivotalOpenSourceHub
 
Best Practices for DevOps in Mobile App Testing
Best Practices for DevOps in Mobile App TestingBest Practices for DevOps in Mobile App Testing
Best Practices for DevOps in Mobile App TestingBitbar
 
Coherence Overview - OFM Canberra July 2014
Coherence Overview - OFM Canberra July 2014Coherence Overview - OFM Canberra July 2014
Coherence Overview - OFM Canberra July 2014Joelith
 
Choosing the right mobile architecture
Choosing the right mobile architectureChoosing the right mobile architecture
Choosing the right mobile architectureLonneke Dikmans
 
Oracle ADF Architecture TV - Development - Version Control
Oracle ADF Architecture TV - Development - Version ControlOracle ADF Architecture TV - Development - Version Control
Oracle ADF Architecture TV - Development - Version ControlChris Muir
 
Automated Testing on Web Applications
Automated Testing on Web ApplicationsAutomated Testing on Web Applications
Automated Testing on Web ApplicationsSamuel Borg
 
ThreadFix 2.1 and Your Application Security Program
ThreadFix 2.1 and Your Application Security ProgramThreadFix 2.1 and Your Application Security Program
ThreadFix 2.1 and Your Application Security ProgramDenim Group
 
Hybrid Analysis Mapping: Making Security and Development Tools Play Nice Toge...
Hybrid Analysis Mapping: Making Security and Development Tools Play Nice Toge...Hybrid Analysis Mapping: Making Security and Development Tools Play Nice Toge...
Hybrid Analysis Mapping: Making Security and Development Tools Play Nice Toge...Denim Group
 
Real life-maf-2015
Real life-maf-2015Real life-maf-2015
Real life-maf-2015Luc Bors
 
The Power of Java and Oracle WebLogic Server in the Public Cloud (OpenWorld, ...
The Power of Java and Oracle WebLogic Server in the Public Cloud (OpenWorld, ...The Power of Java and Oracle WebLogic Server in the Public Cloud (OpenWorld, ...
The Power of Java and Oracle WebLogic Server in the Public Cloud (OpenWorld, ...jeckels
 
JavaOne2013: Build Your Own Runtime Monitoring for the IBM JDK with the Healt...
JavaOne2013: Build Your Own Runtime Monitoring for the IBM JDK with the Healt...JavaOne2013: Build Your Own Runtime Monitoring for the IBM JDK with the Healt...
JavaOne2013: Build Your Own Runtime Monitoring for the IBM JDK with the Healt...Chris Bailey
 
London Tester Gathering Workshops - Mobile Software Testing - Stephen Janaway
London Tester Gathering Workshops - Mobile Software Testing - Stephen JanawayLondon Tester Gathering Workshops - Mobile Software Testing - Stephen Janaway
London Tester Gathering Workshops - Mobile Software Testing - Stephen JanawayStephen Janaway
 
Java Community and Overview Track - March 2016
Java Community and Overview Track - March 2016Java Community and Overview Track - March 2016
Java Community and Overview Track - March 2016Yolande Poirier
 
Continuous Testing of Cloud Applications
Continuous Testing of Cloud ApplicationsContinuous Testing of Cloud Applications
Continuous Testing of Cloud ApplicationsTechWell
 

Similar to JavaCro'15 - Managing Java at Scale Security and Compatibility Applications - Duško Vukmanović (20)

Openbravo Performance Monitoring
Openbravo Performance MonitoringOpenbravo Performance Monitoring
Openbravo Performance Monitoring
 
Continuous Integration Fundamentals: Maven - OFM Canberra July 2014
Continuous Integration Fundamentals: Maven - OFM Canberra July 2014Continuous Integration Fundamentals: Maven - OFM Canberra July 2014
Continuous Integration Fundamentals: Maven - OFM Canberra July 2014
 
Em13c New Features- Two of Two
Em13c New Features- Two of TwoEm13c New Features- Two of Two
Em13c New Features- Two of Two
 
Accelerate Web and Mobile Testing for Continuous Integration and Delivery
Accelerate Web and Mobile Testing for Continuous Integration and DeliveryAccelerate Web and Mobile Testing for Continuous Integration and Delivery
Accelerate Web and Mobile Testing for Continuous Integration and Delivery
 
Apache Geode Clubhouse - WAN-based Replication
Apache Geode Clubhouse - WAN-based ReplicationApache Geode Clubhouse - WAN-based Replication
Apache Geode Clubhouse - WAN-based Replication
 
Best Practices for DevOps in Mobile App Testing
Best Practices for DevOps in Mobile App TestingBest Practices for DevOps in Mobile App Testing
Best Practices for DevOps in Mobile App Testing
 
Coherence Overview - OFM Canberra July 2014
Coherence Overview - OFM Canberra July 2014Coherence Overview - OFM Canberra July 2014
Coherence Overview - OFM Canberra July 2014
 
Continuous testing
Continuous testing Continuous testing
Continuous testing
 
Choosing the right mobile architecture
Choosing the right mobile architectureChoosing the right mobile architecture
Choosing the right mobile architecture
 
Oracle ADF Architecture TV - Development - Version Control
Oracle ADF Architecture TV - Development - Version ControlOracle ADF Architecture TV - Development - Version Control
Oracle ADF Architecture TV - Development - Version Control
 
Automated Testing on Web Applications
Automated Testing on Web ApplicationsAutomated Testing on Web Applications
Automated Testing on Web Applications
 
ThreadFix 2.1 and Your Application Security Program
ThreadFix 2.1 and Your Application Security ProgramThreadFix 2.1 and Your Application Security Program
ThreadFix 2.1 and Your Application Security Program
 
Hybrid Analysis Mapping: Making Security and Development Tools Play Nice Toge...
Hybrid Analysis Mapping: Making Security and Development Tools Play Nice Toge...Hybrid Analysis Mapping: Making Security and Development Tools Play Nice Toge...
Hybrid Analysis Mapping: Making Security and Development Tools Play Nice Toge...
 
Real life-maf-2015
Real life-maf-2015Real life-maf-2015
Real life-maf-2015
 
The Power of Java and Oracle WebLogic Server in the Public Cloud (OpenWorld, ...
The Power of Java and Oracle WebLogic Server in the Public Cloud (OpenWorld, ...The Power of Java and Oracle WebLogic Server in the Public Cloud (OpenWorld, ...
The Power of Java and Oracle WebLogic Server in the Public Cloud (OpenWorld, ...
 
JavaOne2013: Build Your Own Runtime Monitoring for the IBM JDK with the Healt...
JavaOne2013: Build Your Own Runtime Monitoring for the IBM JDK with the Healt...JavaOne2013: Build Your Own Runtime Monitoring for the IBM JDK with the Healt...
JavaOne2013: Build Your Own Runtime Monitoring for the IBM JDK with the Healt...
 
OpenStack Murano
OpenStack MuranoOpenStack Murano
OpenStack Murano
 
London Tester Gathering Workshops - Mobile Software Testing - Stephen Janaway
London Tester Gathering Workshops - Mobile Software Testing - Stephen JanawayLondon Tester Gathering Workshops - Mobile Software Testing - Stephen Janaway
London Tester Gathering Workshops - Mobile Software Testing - Stephen Janaway
 
Java Community and Overview Track - March 2016
Java Community and Overview Track - March 2016Java Community and Overview Track - March 2016
Java Community and Overview Track - March 2016
 
Continuous Testing of Cloud Applications
Continuous Testing of Cloud ApplicationsContinuous Testing of Cloud Applications
Continuous Testing of Cloud Applications
 

More from HUJAK - Hrvatska udruga Java korisnika / Croatian Java User Association

More from HUJAK - Hrvatska udruga Java korisnika / Croatian Java User Association (20)

Java cro'21 the best tools for java developers in 2021 - hujak
Java cro'21 the best tools for java developers in 2021 - hujakJava cro'21 the best tools for java developers in 2021 - hujak
Java cro'21 the best tools for java developers in 2021 - hujak
 
JavaCro'21 - Java is Here To Stay - HUJAK Keynote
JavaCro'21 - Java is Here To Stay - HUJAK KeynoteJavaCro'21 - Java is Here To Stay - HUJAK Keynote
JavaCro'21 - Java is Here To Stay - HUJAK Keynote
 
Javantura v7 - Behaviour Driven Development with Cucumber - Ivan Lozić
Javantura v7 - Behaviour Driven Development with Cucumber - Ivan LozićJavantura v7 - Behaviour Driven Development with Cucumber - Ivan Lozić
Javantura v7 - Behaviour Driven Development with Cucumber - Ivan Lozić
 
Javantura v7 - The State of Java - Today and Tomowwow - HUJAK's Community Key...
Javantura v7 - The State of Java - Today and Tomowwow - HUJAK's Community Key...Javantura v7 - The State of Java - Today and Tomowwow - HUJAK's Community Key...
Javantura v7 - The State of Java - Today and Tomowwow - HUJAK's Community Key...
 
Javantura v7 - Learning to Scale Yourself: The Journey from Coder to Leader -...
Javantura v7 - Learning to Scale Yourself: The Journey from Coder to Leader -...Javantura v7 - Learning to Scale Yourself: The Journey from Coder to Leader -...
Javantura v7 - Learning to Scale Yourself: The Journey from Coder to Leader -...
 
JavaCro'19 - The State of Java and Software Development in Croatia - Communit...
JavaCro'19 - The State of Java and Software Development in Croatia - Communit...JavaCro'19 - The State of Java and Software Development in Croatia - Communit...
JavaCro'19 - The State of Java and Software Development in Croatia - Communit...
 
Javantura v6 - Java in Croatia and HUJAK - Branko Mihaljević, Aleksander Radovan
Javantura v6 - Java in Croatia and HUJAK - Branko Mihaljević, Aleksander RadovanJavantura v6 - Java in Croatia and HUJAK - Branko Mihaljević, Aleksander Radovan
Javantura v6 - Java in Croatia and HUJAK - Branko Mihaljević, Aleksander Radovan
 
Javantura v6 - On the Aspects of Polyglot Programming and Memory Management i...
Javantura v6 - On the Aspects of Polyglot Programming and Memory Management i...Javantura v6 - On the Aspects of Polyglot Programming and Memory Management i...
Javantura v6 - On the Aspects of Polyglot Programming and Memory Management i...
 
Javantura v6 - Case Study: Marketplace App with Java and Hyperledger Fabric -...
Javantura v6 - Case Study: Marketplace App with Java and Hyperledger Fabric -...Javantura v6 - Case Study: Marketplace App with Java and Hyperledger Fabric -...
Javantura v6 - Case Study: Marketplace App with Java and Hyperledger Fabric -...
 
Javantura v6 - How to help customers report bugs accurately - Miroslav Čerkez...
Javantura v6 - How to help customers report bugs accurately - Miroslav Čerkez...Javantura v6 - How to help customers report bugs accurately - Miroslav Čerkez...
Javantura v6 - How to help customers report bugs accurately - Miroslav Čerkez...
 
Javantura v6 - When remote work really works - the secrets behind successful ...
Javantura v6 - When remote work really works - the secrets behind successful ...Javantura v6 - When remote work really works - the secrets behind successful ...
Javantura v6 - When remote work really works - the secrets behind successful ...
 
Javantura v6 - Kotlin-Java Interop - Matej Vidaković
Javantura v6 - Kotlin-Java Interop - Matej VidakovićJavantura v6 - Kotlin-Java Interop - Matej Vidaković
Javantura v6 - Kotlin-Java Interop - Matej Vidaković
 
Javantura v6 - Spring HATEOAS hypermedia-driven web services, and clients tha...
Javantura v6 - Spring HATEOAS hypermedia-driven web services, and clients tha...Javantura v6 - Spring HATEOAS hypermedia-driven web services, and clients tha...
Javantura v6 - Spring HATEOAS hypermedia-driven web services, and clients tha...
 
Javantura v6 - End to End Continuous Delivery of Microservices for Kubernetes...
Javantura v6 - End to End Continuous Delivery of Microservices for Kubernetes...Javantura v6 - End to End Continuous Delivery of Microservices for Kubernetes...
Javantura v6 - End to End Continuous Delivery of Microservices for Kubernetes...
 
Javantura v6 - Istio Service Mesh - The magic between your microservices - Ma...
Javantura v6 - Istio Service Mesh - The magic between your microservices - Ma...Javantura v6 - Istio Service Mesh - The magic between your microservices - Ma...
Javantura v6 - Istio Service Mesh - The magic between your microservices - Ma...
 
Javantura v6 - How can you improve the quality of your application - Ioannis ...
Javantura v6 - How can you improve the quality of your application - Ioannis ...Javantura v6 - How can you improve the quality of your application - Ioannis ...
Javantura v6 - How can you improve the quality of your application - Ioannis ...
 
Javantura v6 - Just say it v2 - Pavao Varela Petrac
Javantura v6 - Just say it v2 - Pavao Varela PetracJavantura v6 - Just say it v2 - Pavao Varela Petrac
Javantura v6 - Just say it v2 - Pavao Varela Petrac
 
Javantura v6 - Automation of web apps testing - Hrvoje Ruhek
Javantura v6 - Automation of web apps testing - Hrvoje RuhekJavantura v6 - Automation of web apps testing - Hrvoje Ruhek
Javantura v6 - Automation of web apps testing - Hrvoje Ruhek
 
Javantura v6 - Master the Concepts Behind the Java 10 Challenges and Eliminat...
Javantura v6 - Master the Concepts Behind the Java 10 Challenges and Eliminat...Javantura v6 - Master the Concepts Behind the Java 10 Challenges and Eliminat...
Javantura v6 - Master the Concepts Behind the Java 10 Challenges and Eliminat...
 
Javantura v6 - Building IoT Middleware with Microservices - Mario Kusek
Javantura v6 - Building IoT Middleware with Microservices - Mario KusekJavantura v6 - Building IoT Middleware with Microservices - Mario Kusek
Javantura v6 - Building IoT Middleware with Microservices - Mario Kusek
 

JavaCro'15 - Managing Java at Scale Security and Compatibility Applications - Duško Vukmanović

  • 1. Java SE Advanced Client Management Best Practices Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | Duško Vukmanović Principal Sales Consultant FMW
  • 2. Client Management Best Practices 1. Automate scheduled updates. – Plan ahead based on known schedule. 2. Collect usage information. – Collect real information: which applications need which old Java versions, which users need which applications. Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | users need which applications. 3. Protect old versions through Deployment Rule Set. – Statically install old versions only as needed, protect them through Deployment Rule Sets.
  • 3. Java SE Advanced • Same Java. • Management & Monitoring Tools. – Help understand/manage client usage. – Help investigate production software. Experienced Support. Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | • Experienced Support. – What information applies to this situation? – What information from the last 19 years does not apply (anymore)?
  • 4. Automate scheduled updates. 1. Automate scheduled updates. 2. Collect usage information. 3. Protect old versions through DRS. Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | 3. Protect old versions through DRS.
  • 5. Schedule updates • Quarterly patch schedule for the next year: http://www.oracle.com/technetwork/topics/security/alerts-086861.html • MSI installer – Customizable. – Automated silent installs. Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | – Automated silent installs.
  • 6. Deploy updates in timely fashion Customize and roll out ASAP after Critical Patch Update If you do not: Clients periodically check security baseline. Built-in expiration a month after scheduled Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | Built-in expiration a month after scheduled Critical Patch. Clients will change behavior to decrease their attack surface. Java or browser will prompt or block.
  • 7. Collect usage information. 1. Automate scheduled updates. 2. Collect usage information. 3. Protect old versions through DRS. Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | 3. Protect old versions through DRS.
  • 8. Advanced Management Console • Usage Tracking across installations – Tracks applications and their location. – Tracks which Java version was used. • Deployment Rule Set tool Administer Java clients at scale. Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | • Deployment Rule Set tool – Control prompts: run or block. – Verify against usage tracking.
  • 9. Management Console, Collector, and Clients Control Java in the enterprise through real data. 1. Clients report usage via UDP. Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | 2. Usage tracker keeps records. 3. Management console helps configure the desired outcome. Deploy configuration.
  • 10. Desktop Administrators can control multiple Java versions. Deployment Rule Sets Many managed clients. Security: limiting the exposure of old versions. Different users need several at once. Different applications need different Java versions. Follow-up Questions: Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | Follow-up Questions: Which versions do I actually need? Which applications need which versions? How do I identify those applications? Which users need which applications? How do I validate answers to the above questions? Once validated, how do I integrate the answers into my tool chains?
  • 11. “This needs Java 8, that needs 6 update 38, those needs 7, etc.” Control Compatibility Application A Application B Application C Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | Follow-up Questions: • How do I identify these applications across many users? • Once identified, how do I know which needs which Java version? • After associating application to Java version, how do I manage the compatibility across many users?
  • 12. • Run count: – How important is this application? – How many people need it? • URL / Codebase: – Where is this application? Track and use real data Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | – Where is this application? • Java Version: – Which version is the right one? • Etc.
  • 13. Identify which Java versions are needed Control Prompts and Compatibility • Inspect applications to see environments. • Guided rules to control dialog prompts and compatibility. – “Run on Java 1.7 without prompting.” Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | – “Run on Java 1.7 without prompting.”
  • 14. Validate rules against Tracking System • Compare whitelist / blacklist to real data. – “Did I do what I intended?” Ensure correctness before user testing Copyright © 2014, Oracle and/or its affiliates. All rights reserved. |
  • 15. Advanced Management Console • Usage Tracking across installations. – Tracks applications and their location. – Tracks which Java version was used. • Deployment Rule Set tool Desktop Administrator can manage Java at scale. Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | • Deployment Rule Set tool – Control prompts: run or block. – Verify against usage tracking.
  • 16. Protect old versions through DRS. 1. Automate scheduled updates. 2. Collect usage information. 3. Protect old versions through DRS. Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | 3. Protect old versions through DRS.
  • 17. Isolating old Java versions • Do not connect old Java versions to current internet. – Public: stay with scheduled critical patches of supported versions. – SE Advanced: provides critical patches for end-of-public-life JREs. • Control compatibility through Deployment Rule Sets. – Use old version only for identified applications/users. Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | – Use old version only for identified applications/users. Major Release GA Date End of Public Updates Notification End of Public Updates 5.0 May 2004 Apr 2008 Oct 2009 6 Dec 2006 Feb 2011 Feb 2013 7 July 2011 March 2014 April 2015* 8 March 2014 TBD March 2017* http://www.oracle.com/technetwork/java/eol-135779.html
  • 18. Statically install old versions • Regular “patch-in-place” of public version. • Old version must be on system to be used. – Static Installation keeps it separate. – Current public version protects older version through DRS. Only as needed. Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | – Current public version protects older version through DRS. http://docs.oracle.com/javase/8/docs/technotes/guides/install/wi ndows_installer_options.html#static_installation
  • 19. Client Management Best Practices 1. Automate scheduled updates. 2. Collect usage information. 3. Protect old versions through DRS. Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | 3. Protect old versions through DRS.
  • 20. Java SE Advanced • Same Java. • Management & Monitoring Tools. – Help understand/manage client usage. – Help investigate production software. Experienced Support. Copyright © 2014, Oracle and/or its affiliates. All rights reserved. | • Experienced Support. – What information applies to this situation? – What information from the last 19 years does not apply (anymore)?
  • 21. Copyright © 2014, Oracle and/or its affiliates. All rights reserved. |