Re: Security on applets

Marianne Mueller (mrm@doppio)
Thu, 9 Jan 1997 10:33:30 -0800

Date: Thu, 9 Jan 1997 10:33:30 -0800
From: mrm@doppio (Marianne Mueller)
Message-Id: <199701091833.KAA03022@puffin.eng.sun.com>
To: pieter@eland.dba.co.za
Subject: Re: Security on applets

We don't have mechanisms for you to attach particular restrictions
on applets, or conversely, to release particular existing restrictions.

You can use the Java digital signatures to sign an applet in a JAR file.
Then, if someone has that signature as a trusted signature in their
system, that applet will be allowed to run as if it were a locally
installed applet, with full access to the system.

For more info on this, check out

Brief user's guide: http://java.sun.com/security/usingJavakey.html
Policy guidelines: http://java.sun.com/security/policy.html
javakey man page:
http://java.sun.com/products/JDK/1.1/docs/tooldocs/solaris/javakey


For a description of the existing default restrictions on applets,
see
Applet Security FAQ http://java.sun.com/sfaq/
Java Security Whitepaper http://java.sun.com/security/whitepaper.ps


All these links are on the central security page, at
http://java.sun.com/security

Marianne

> From pieter@eland.dba.co.za Thu Jan 9 00:15:03 1997
> Subject: Security on applets
> To: Java-security@java
> Date: Thu, 9 Jan 1997 10:15:11 +0200 (AST)
> From: "Pieter van der Merwe" <pieter@eland.dba.co.za>
> MIME-Version: 1.0
> Content-Transfer-Encoding: 7bit
>
> Hi there!
>
> I was wondering what kind of security one might put on a applet. If it is
> possible, could you please send me an example of what is possible with Java
> in regard to Security.
>
> Thank you
>
> Pieter
>
>
>