Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Java uses code signing as a requirement for granting elevated privileges to code. Many security policies permit signed code to operate with privileges that exceed the privileges given to unsigned codeelevated privileges. For example, Java applets can escape the default sandbox restrictions when signed. Consequently, users can grant explicit permissions either to a particular code base or to all code signed by a particular signer. This approach places control of security in the hands of the user, who can choose whether to run an application with full or restricted permissions.

...

<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="4c3b59ff9d99b5de-3446f125-45144f18-a9a2b049-a3bd478296a772965b1b5b09"><ac:plain-text-body><![CDATA[

[ISO/IEC TR 24772:2010

http://www.aitcnet.org/isai/]

"Adherence to Least Privilege [XYN]"

]]></ac:plain-text-body></ac:structured-macro>

...

<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="ae3b26bfdfdea4cb-5b07498c-49054d6b-aabba079-93210ffbc284b4e34096eba0"><ac:plain-text-body><![CDATA[

[[Dormann 2008

AA. Bibliography#Dormann 08]]

 

]]></ac:plain-text-body></ac:structured-macro>

<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="7cac5d02f75ff064-d0b951af-47914ca9-8eb1ace7-90c760d689ae7194d2d6fa52"><ac:plain-text-body><![CDATA[

[[McGraw 1999

AA. Bibliography#McGraw 99]]

Appendix C: Sign Only Privileged Code

]]></ac:plain-text-body></ac:structured-macro>

<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="f7c88c112f1e4910-b1a55027-495042cf-b1029bcb-8cebe602454131a228a9ac02"><ac:plain-text-body><![CDATA[

[[Schneier 2000

AA. Bibliography#Schneier 00]]

 

]]></ac:plain-text-body></ac:structured-macro>

...