SIP: Java Security FAQ  Nothing in life is completely secure; Java is no exception. Several specific security problems have been discovered and fixed since Java was first released. If you're using an up-to-date Web browser, you are usually safe against the known attacks. However,...

Applet Security  K is to enable browsers to run untrusted applets in a trusted environment. Our approach is to be conservative at first, and to add functionality when it can be added securely. The intent is to prevent applets from inspecting or...

The Java Filter  While you are surfing the World Wide Web, you frequently come across pages that contain Java applets. These applets are small programs, written by people that you often don’t know or trust. However, their programs are being downloaded to, and...

Chronology of security-related bugs and issues  If you would like to send a description of a possible bug to the security team, send email to java-security@sun.com. November 19, 2002 CERT has reported a bug in the zlib compression library (see www.cert.org/advisories/CA-2002-07.html Sun's implementations of the Java...

KeyTool GUI  I is no longer available from this site and has been superseded by KeyStore Explorer. Your browser will be redirected to the KeyStore Explorer web site in a moment. If your browser does not redirect in 5 seconds then click...

 Resolution div neg scale isls{landplus90{VResolution 72 div vsize mul 0 exch}{Resolution -72 div hsize mul 0}ifelse TR}if Resolution VResolution vsize -72 div 1 add mul TR[matrix currentmatrix{dup dup round sub abs 0.00001 lt{round}if} forall round exch round exch]setmatrix}N landscape{/isls true...

Thursday 01st of December 2005 06:13:53 AM  ...

jChains  Sources from the official jchains source codedirectory 29.01.04 jChains has a GUI now (see screenshots below) dEscription This custom security manager framework records the permissions needed for the codebases (jars) of j2se applications running under access control of a security...

Secure your Java apps from end to end, Part 1  Virtual machine and byte code security Summary Security means many things to many people. For much of its history, Java security has meant virtual machine and byte code security. That notion neglects two equally important facets application and network security....

ONJava.com: Java and Security, Part 1  Logic filters connection requests. They also cover WebLogic's authentication and authorization framework and how it supports the standard J2EE security services. WebLogic provides a comprehensive suite of security services that can be used to protect all aspects of a domain...

Java Security Research  There is a continuing trend to cast real world business processes into electronic forms linking businesses to businesses and consumers to businesses via the Internet. Computer security has never been more important than now. Java, as a programming and runtime...

Java Web Application Security SCWCD Security Tutorial  Web security can be defined in various ways, depending on individual points of view. The main focus of this article is the security of Java JSP applications developed and deployed for the Internet. Almost by its very nature, one of...

SourceForge.net: SSHTools  Provide feedback on this page Recently changed page Site Status SF.net Projects SSHTools Summary SSHTools Stats RSS Summary Admin Home Page Forums Tracker Bugs Patches Feature Requests Mail Tasks Screenshots News CVS Files Sponsored Downloads About SSHTools SSHTools is a...

DevResearch  If you are implementing an application that makes use of untrusted, dynamically downloaded Java classes, you need to spend some time thinking about security issues. Your application will need a security policy and code that enforces that policy. Just as...

Build secure network applications with SSL and the JSSE API  Build secure network applications with SSL and the JSSE API Get started with SSL and JSSE using these two simple apps Summary SSL (Secure Socket Layer) is the de facto standard for securing a communication channel between two applications that...

Java-Xpress Java Resources  Here are selected best practices for creating EJBs for an enterprise-level distributed application supported by a J2EE-compliant application server such as the BEA WebLogic Server. Our assumption is that the developer is an intermediate-to-expert Java programmer who's familiar with writing...

 Java programs can dynamically load Java classes from a variety of sources, including untrusted sources, such as web sites reached across an insecure network. The ability to create and work with such mobile code is one of the great strengths...

QUIZ: Inside Java 2 Platform Security, 2/e: Architecture, API Design and Implementation Quiz  This quiz is based on the book, Inside Java 2 Platform Security, Second Edition: Architecture, API Design and Implementation published by Addison-Wesley. The quiz is based on material throughout the book. Test your knowledge of the Java 2 platform security...

Security Programming Quiz  This short quiz tests your knowledge of the Java 2 security features. If you do not know an answer, take your best guess. 1. What does the java.security.manager option do? A. Starts an applet in a restricted environment. B. Starts...

TenorLogic Java Security Resources  Despite regular announcements of security vulnerabilities in software products, many programmers still tend to view security as a discipline that is separate from software engineering. For decades, the situation has been best summed up by a half-serious comment a professor...

Security in Java 2 SDK 1.2  M security features protect you from malevolent programs. You'll see how to use tools to control access to resources, to generate and to check digital signatures, and to create and to manage keys needed for signature generation and checking. You'll...

jAgile Secure Java Development  Java developers should abide by. If you are responsible for managing Java developers, or if your business relies on the security of Java, make sure your developers follow these rules. The rules are based on much experience in hunting down...

 Based on the previous discussion, there are two main JDBC scenarios to consider for security purposes: In the case of Java applications, the Java code is trusted We also consider trusted applets in this category for security purposes. In contrast,...

Secure-Soft  In an enterprise computing environment, failure, compromise, or lack of availability of computing resources can jeopardize the viability of the enterprise. An organization must take steps to identify threats to security. Once they are identified, steps should be taken to...