Java Security Architecture: -


Introduction

The Original Sandbox Model
Evolving the Sandbox Model

New Protection Mechanisms -- Overview of Basic Concepts

Permissions and Security Policy

The Permission Classes

java.security.Permission
java.security.PermissionCollection
java.security.Permissions
java.security.UnresolvedPermission
java.io.FilePermission
java.net.SocketPermission
java.security.BasicPermission
java.util.PropertyPermission
java.lang.RuntimePermission
java.awt.AWTPermission
java.net.NetPermission
java.lang.reflect.ReflectPermission
java.io.SerializablePermission
java.security.SecurityPermission
java.security.AllPermission
javax.security.auth.AuthPermission
Discussion of Permission Implications
How To Create New Types of Permissions
java.security.CodeSource
java.security.Policy

Policy File Format
Property Expansion in Policy Files
General Expansion in Policy Files
Assigning Permissions
Default System and User Policy Files
Customizing Policy Evaluation
java.security.GeneralSecurityException

Access Control Mechanisms and Algorithms

java.security.ProtectionDomain
java.security.AccessController

Algorithm for Checking Permissions
Handling Privileges
Inheritence of Access Control Context
java.security.AccessControlContext

Secure Class Loading

Class Loader Class Hierarchies
The Primordial Class Loader
Class Loader Delegation
Class Resolution Algorithm

Security Management

Managing Applets and Applications
SecurityManager versus AccessController
Auxiliary Tools

The Key and Certificate Management Tool
PolicyTool
The JAR Signing and Verification Tool

GuardedObject and SignedObject

java.security.GuardedObject and java.security.Guard
java.security.SignedObject

Discussion and Future Directions

Resource Consumption Management
Arbitrary Grouping of Permissions
Object-Level Protection
Subdividing Protection Domains
Running Applets with Signed Content

Summary

Acknowledgments

References

Revision History


CONTENTS | PREV | NEXT