More on JSR 351 (Identity API)
By alexismp on Oct 20, 2011
Staying on the theme of Java EE.next progress (albeit beyond Java EE 7 this time), JSR 351, the Java Identity API, is set to enhance the Java Security Model for both Java SE and Java EE in a declarative programing style.
Following Ron Monzillo's presentation at JavaOne 2011 InfoQ posted a summary highlighting the goals of the JSR: Standardize Identity in Java (while remaining domain-agnostic), Promote Attribute Service for authorization and auditing and finally define the aforementioned declarative programming model.
Note that this JSR doesn't not plan to complete in time for Java EE 7 but should instead be usable starting with JavaEE 6.