|
|
Recommended: Sing it, brah! 5 fabulous songs for developers
JW's Top 5
Featured White Papers
- Measuring Risk to Improve Java Software Quality
- Do You Really Get Classloaders?
- Pragmatic Continuous Delivery with Jenkins, Nexus, and LiveRebel
- Your Next Java Web App: Less XML, No Long Restarts, Fewer Hassles
- Coding with JRebel, Java Forever Changed
- 2012 Developer Productivity Report: Java Tools, Tech, Devs, and Data
Sponsored Links
-
Graph databases are 1000x faster than relational.
Learn More!
-
Career opportunities at Harman- Careers That'll Rock Your Socks Off.
Learn More!
-
Developer-friendly Java PDF libraries by Qoppa Software
Live Demos
-
Stop blaming your app! Diagnose Java performance issues.
Free tool >
-
UrbanCode: Go From Continuous Integration to
Continuous DeliveryLearn More!
Sponsored Links
Optimize with a SATA RAID Storage Solution
Range of capacities as low as $1250 per TB. Ideal if you currently rely on servers/disks/JBODs
Java security evolution and concepts, Part 2
Discover the ins and outs of Java security
Page 2 of 6
Evolution of Java security
Some security features touted in recent Java releases were also available in earlier versions. However, using them involved a considerable amount of additional programming and a good understanding of the security model. Generally, Java has provided access to the language and the runtime environment conservatively, which is good from a security perspective, although somewhat restrictive of the ability to support different policies.
It's necessary for a security designer to understand Java security evolution, as many enterprises may have to support pre-Java-2 releases for years to come. So this article will concentrate on Java 2 Security, but only after an overview of security in previous releases.
JDK 1.0 security -- Java security hits the sandbox
JDK 1.0 featured the sandbox security model, as seen in Figure 1. The sandbox model confines Java applets, potentially dangerous or not, to a strictly defined arena where they cannot affect other system resources. (For more details of the sandbox model, including its limitations, see the "Sidebar 1: Sandbox model for security.")
Figure 1. JDK 1.0 security
model -- the sandbox
Click on thumbnail
to view full image (20 KB)
Since applications load locally, they, unlike applets, need not be deemed untrustworthy and enjoyed unlimited access to all resources in JDK 1.0. A consistent security policy for applets and applications was therefore not supported by this model.
JDK 1.1 Security -- all or nothing
JDK 1.0's sandbox model provided virtually no flexibility. In an attempt to overcome this, JDK 1.1 introduced the signed applet, illustrated in Figure 2. A signed applet is an applet packaged as a Java Archive (JAR) file and signed with a private key. The signed applet enjoys unlimited access, just like a local application, provided the corresponding public key is trusted in the executing environment. Unsigned applets default back to the sandbox model.
Figure 2. The JDK 1.1 security model
Click on thumbnail
to view full image (24 KB)
JDK 1.1's security model was less restrictive than the sandbox model and provided for slightly more consistent treatment of applets and applications. However, it had one major disadvantage: applets either received unlimited access or were confined to the sandbox -- there was no option for selective access to resources. This model was another example of an inflexible implementation where the policy was forced by the mechanism.
Java 2 Security -- fine-grained security
The Java 2 Security model, as illustrated in Figure 3, provides for a consistent and flexible policy for applets and applications. While applications still run unrestricted by default, they can be subjected to the same policy as applets.
The Java 2 model also introduces the concept of a ProtectionDomain, which permits a highly flexible security policy decoupled from its implementation.
Figure 3. Java 2 Security model
Click on thumbnail
to view full image (28 KB)
Overview of Java 2 security
The various features of the Java 2 Runtime Environment's security model can be seen in Figure 4. As a general caveat, some of the issues discussed might not be part of the specification per se, but still peculiar to most implementations.
- Feedback
More from JavaWorld
Resources
- "Java Security Evolution and Concepts," Raghavan N. Srinivas (JavaWorld):
- Part 1Learn computer security concepts and terms in this introductory overview (April 2000)
- Part 2Discover the ins and outs of Java security (July 2000)
- Part 3Tackle Java applet security with confidence (December 2000)
- Part 4Learn how optional packages extend and enhance Java security (May 2001)
- Part 5J2SE 1.4 offers numerous improvements to Java security (December 2001)
- JavaWorld security-related articles and resources
- "AESCryptography advances into the future," Raghavan Srinivas (JavaWorld, April 2000)
http://www.javaworld.com/jw-04-2000/jw-0428-aes.html - "A security roundup," Raghavan Srinivas (JavaOne Today, June 2000) -- highlights of JavaOne sessions and BOFs on topics relating to Java security
http://www.javaworld.com/javaone00/j1-00-security.html - JavaWorld's Java Bookstore security page can point you to numerous security-related books
http://www.javaworld.com/javaworld/books/jw-books-security.html
- java.sun.com security-related resources
- For comprehensive Java security information, read java.sun.com's Java Security API page
http://java.sun.com/security - For the latest documentation on Java security, read the documentation that is part of Java 2 v1.3
http://java.sun.com/j2se/1.3/docs/guide/security/index.html - "Security on the Java Platform," Li Gong (JavaOne, 1999) -- Slides from a technical session covering Java security
http://java.sun.com/javaone/javaone98/sessions/T101/index.htm - More JavaOne 1999 Java security information
http://industry.java.sun.com/javaone/99/tracks/ - "Low Level Security in Java," Frank Yellin (December 1995)
http://java.sun.com/sfaq/verifier.html - For Java security Q&A archives, see
http://archives.java.sun.com/archives/java-security.html - "Frequently Asked Questions -- Java Security" (java.sun.com)
http://java.sun.com/sfaq/ - "TrailSecurity in Java 2 SDK 1.2," Mary Dageforde (java.sun.com)
http://web2.java.sun.com/docs/books/tutorial/security1.2/index.html
- Useful security-related books, documentation, and Websites
- Inside Java 2 Platform SecurityArchitecture, API Design, and Implementation, Li Gong (Addison Wesley, 1999)
http://www1.fatbrain.com/asp/bookinfo/bookinfo.asp?theisbn=0201310007 - The University of Princeton's highly regarded Secure Internet Programming Website dedicates itself to computer security, especially
mobile code such as Java
http://www.cs.princeton.edu/sip - Read about the University of Washington's "Kimera -- A System Architecture for Networked Computers" site
http://kimera.cs.washington.edu - A comprehensive list of security problems with suggested remedial action, known as CERT advisories
http://www.cert.org - Applied CryptographyProtocols, Algorithms, and Source Code in C, 2nd Ed., Bruce Schneier (John Wiley and Sons, 1996) -- a fascinating book on the science and politics of cryptography
http://www1.fatbrain.com/asp/bookinfo/bookinfo.asp?theisbn=0471128457 - Find information and news about the Advanced Encryption Standard (AES) at the "AESCrypto Algorithm for the 21st Century" page
http://csrc.nist.gov/encryption/aes/ - Download RSA Labs's FAQ about today's cryptographyftp://ftp.rsasecurity.com/pub/labsfaq/labsfaq4.pdf
- X.509 standard for certificates
http://www.ietf.org/rfc/rfc2459.txt
About Us | Advertise | Contact Us | Terms of Service/Privacy | AdChoices
Copyright, 2006-2013 Infoworld, Inc. All rights reserved.