2. Oracle Phasing Out Unsigned, Self-Signed Applets
Oracle said it is discouraging the use of unsigned or self-signed Java applets. Oracle said future versions will no longer allow the execution of self-signed or unsigned code. That means users will be prompted to manually run an unsigned applet. Rapid7's Moore said the change also centralizes management of Java security policies and allows developers to whitelist specific websites.