TextKey's JAVA library allows you to use REST API calls server-side from a Java backend. TextKey is an omni-factor authentication API that uses seven-factors of authentication to provide security for devices ranging from mobile to electronic door locks. TextKey works through using SMS service, unique code, cellular number, UDID, a single use URL, and an optional pin. TextKey uses Rest with a JSON response and SOAP. TextKey is free for ten users, and available for a monthly charge per user thereafter.
With exciting new web techniques comes inevitable security issues. Luckily, there's usually a solution, though it can require a little more effort from developers.
An article posted on IBM's developerWorks site covers some common mashup vulnerabilities. Among the techniques addressed are cross-site scripting and JSON data security. The author also provides some solutions or ideas for each vulnerability.
There’s a lot of focus these days on securing applications and the devices that consume them. But when it comes to all the layers of software in between that enable all the applications to be consumed, security has largely been an oversight.