Java Security Architecture: -
Introduction
- The Original Sandbox Model
- Evolving the Sandbox Model
New Protection Mechanisms -- Overview of Basic Concepts
Permissions and Security Policy
- The Permission Classes
- java.security.Permission
- java.security.PermissionCollection
- java.security.Permissions
- java.security.UnresolvedPermission
- java.io.FilePermission
- java.net.SocketPermission
- java.security.BasicPermission
- java.util.PropertyPermission
- java.lang.RuntimePermission
- java.awt.AWTPermission
- java.net.NetPermission
- java.lang.reflect.ReflectPermission
- java.io.SerializablePermission
- java.security.SecurityPermission
- java.security.AllPermission
- javax.security.auth.AuthPermission
- Discussion of Permission Implications
- How To Create New Types of Permissions
- java.security.CodeSource
- java.security.Policy
- Policy File Format
- Property Expansion in Policy Files
- General Expansion in Policy Files
- Assigning Permissions
- Default System and User Policy Files
- Customizing Policy Evaluation
- java.security.GeneralSecurityException
Access Control Mechanisms and Algorithms
- java.security.ProtectionDomain
- java.security.AccessController
- Algorithm for Checking Permissions
- Handling Privileges
- Inheritence of Access Control Context
- java.security.AccessControlContext
Secure Class Loading
- Class Loader Class Hierarchies
- The Primordial Class Loader
- Class Loader Delegation
- Class Resolution Algorithm
Security Management
- Managing Applets and Applications
- SecurityManager versus AccessController
- Auxiliary Tools
- The Key and Certificate Management Tool
- PolicyTool
- The JAR Signing and Verification Tool
GuardedObject and SignedObject
- java.security.GuardedObject and java.security.Guard
- java.security.SignedObject
Discussion and Future Directions
- Resource Consumption Management
- Arbitrary Grouping of Permissions
- Object-Level Protection
- Subdividing Protection Domains
- Running Applets with Signed Content
Summary
Acknowledgments
References
Revision History
CONTENTS | PREV | NEXT