Software Design (CSC-223 97F)

[News] [Basics] [Syllabus] [Outlines] [Assignments] [Studies] [Examples] [Readings] [Projects] [API]

Java Security

Original version by Tony Stubblebine and Omar Ghaffar. Some slight modifications by Samuel A. Rebelsky.

Security Concerns

Security Features in the Language

Java provides security:

Security Features in the Virtual Machine

Actions controlled by the Security Manager

Untrusted applets are not allowed to:

Hacks and Security Flaws

Run as a trusted applet on the HotJava browser

This vulnerability is present in the Netscape Navigator 2.0 Java implementation and in Release 1.0 of the Java Developer's Kit from Sun Microsystems, Inc. These implementations do not correctly implement the policy that an applet may connect only to the host from which the applet was loaded. Read CERT advisory

Topic: Weaknesses in Java Bytecode Verifier Read CERT Advisory

Extending Java Security


[News] [Basics] [Syllabus] [Outlines] [Assignments] [Studies] [Examples] [Readings] [Projects] [API]

Disclaimer Often, these pages were created "on the fly" with little, if any, proofreading. Any or all of the information on the pages may be incorrect. Please contact me if you notice errors.

Source text written by Samuel A. Rebelsky.

Source text last modified Tue Sep 30 07:55:23 1997.

This page generated on Fri Oct 17 09:04:48 1997 by SamR's Site Suite.

Contact our webmaster at