Homepage This page's url is: -crn- Rankings and Research Companies Channelcast Marketing Matters CRNtv Events WOTC Jobs HPE Discover 2019 News Cisco Partner Summit 2019 News Cisco Wi-Fi 6 Newsroom Dell Technologies Newsroom Hitachi Vantara Newsroom HP Reinvent Newsroom IBM Newsroom Ingram Micro ONE 2019 News Juniper NXTWORK 2019 News Lenovo Newsroom Lexmark Newsroom NetApp Insight 2019 News Cisco Live Newsroom HPE Zone Intel Tech Provider Zone

5 Significant Java Security Improvements That Foil Attacks

Oracle is improving the security capabilities in its highly targeted Java platform to make it more costly for cybercriminals to carry out successful attacks. Here are the five most significant changes to the platform.

Back 1   2   3   ... 6 Next

1. Signed Java Applets No Longer Allows Sandbox Escape

Oracle recommends websites switch to signed Java applets, a practice that establishes the identity of the signer and was used to boost privileges. It also reduced the effectiveness of the sandbox. In a move seen as one of the most significant security improvement, code signing an applet no longer confers sandbox escape privileges. Metasploit creator and Rapid7 CSO HD Moore said the practice of signing applets has been targeted by attackers and consistently abused by security auditors for years.

Back 1   2   3   ... 6 Next

sponsored resources