A Java Filter

Rogue Java applets are currently a major concern for big companies and private users alike. While the best protection against them is to turn off Java support of your WWW browser, this ``solution'' is unsatisfying since it deprives us of many of the advantages of the Java platform. Other systems such as firewalls or code signing have been proposed to ``enhance'' the security of the user. In this paper we show that they do not necessarily, and describe a simple, yet effective, way to prevent untrusted applets from entering the local system while allowing trusted applets to execute in whatever sandbox the browser provides for them. Our technique uses class loaders and can be extended to provide fine-grained access control for Java applets.

Click Here to download this article

Receive all the latest articles by email!

Get all articles delivered directly to your mailbox as and when they are released on WindowSecurity.com! Choose between receiving instant updates with the Real-Time Article Update, or a monthly summary with the Monthly Article Update.



Receive all the latest articles by email!

Receive Real-Time & Monthly WindowSecurity.com article updates in your mailbox. Enter your email below!
Click for Real-Time sample & Monthly sample

Become a WindowSecurity.com member!

Discuss your security issues with thousands of other network security experts. Click here to join!

Community Area

Log in | Register

Solution Center

Readers' Choice

Which is your preferred network auditing solution?