Java Security: Hotlist: Talks/Articles

Java Security Hotlist Categories

Return to Hotlist | Return to Java Security...

Search the text of the pages on this hotlist.

TALKS/ARTICLES

Java Security Articles (By the Authors and About the Authors) This page is a collection of articles written by or about the Java Security book. Many are hyperlinked to Web sites. Publications include Byte, JavaWorld, and C!Net. (You can sign up for notification about future articles.)

Lectures and talks promoting the Java Security book This includes bookstore signings, on-line chats, radio, trade shows and academic lectures by Ed Felten and Gary McGraw.

Java(tm) and JavaSoft Products JavaSoft's Documentation page. Includes information on getting Java specs.

JavaSoft FORUM on Java Security A discussion of Java Security issued hoted by JavaSoft and including several prominent security researchers.

Java Security Chapter 14 of "WWW Beyond the Basics" a Web book by Virginia Tech students. This web-based document by Vijay Sureshkumar offers a concise overview of some security issues and provides a quick introduction to the security model.

Security for Java Programmers: An Introduction Jay Heiser's 2/97 article from the Java Developers Journal. Introductory.

Java Security Model: Java Protection Domains A handout from JavaSoft which briefly explains the new security model.

Introduction To Capability Based Security A Web-based tutorial from Electric Communities.

Object Signing CodeStock Notes Netscape developer information about signing code (including Java). Also see Netscape Object Signing.

Secure Computing with Java: Now and The Future A white paper from JavaSoft explaining Java Security. Looks suspiciously like our book in places. Hmm.

Java's security architecture An overview of the JVM's security model and a look at its built-in safety features.

Security and the class loader architecture A look at the role played by class loaders in the JVM's overall security model

Security and the class verifier A look at the role played by the class verifier in the JVM's overall security model

Java security: How to install the security manager and customize your security policy Learn about the security manager and the Java API, what remains unprotected by the security manager, and security beyond the JVM architecture

Code Signing for Java Applets A home-grown article by Dan Grisom explaining how to sign Java code. I wrote a couple of articles for developer.com about code signing too. See the Java Security Articles page.

Javaworld's Java Security Books list An exhaustive list of Java security books (including etherbooks and non-existent titles). We'll give you one guess which one we think is best!

Signing Applets for Internet Explorer and Netscape Navigator An article by Joseph Bowbeer from June 97 (JDK 1.1 days).

Directions in Java Security: The JDC Interviews JavaSoft Security Guru Li Gong Cheese, but interesting cheese. You'll have to register as a Java Developer to see this interview.

Building a bigger sandbox A superficial look at the new code signing model.

Package java.security The java.security package API summary for JDK 1.2.

Security in JDK 1.2 Sun's on-line tutorial stepping through JDK 1.2 security. The party line.

Trust Based Security for Java Microsoft's view on Trust-Based security in Java. Pointers to code signing HOWTOs related to Authenticode.

Netscape Object Signing Establishing Trust for Downloaded Software Netscape's Object Signing model page. All three major vendors have slightly different approaches (though all are based on stack inspection).

The trick to using Java networking applets behind firewalls A JavaWorld Java tip addressing the firewall problem.

Java 2 security model white paper Sun's perspective on the new model.

The Evolution of Java Security from IBM An IBM whitepaper explaining how Java has evolved from JDK 1.0.2 to JDK 1.2 (now called Java 2). The API explanation is dated.

Note: The opinions expressed on this page are the opinions of Gary McGraw and Ed Felten.
Statements made on this page should not be construed as having come from our employers or our publishers.
We welcome correspondence, see the Java Security page for e-mail addresses.

Copyright © 1996-9, Gary McGraw and Edward Felten

Java Security Articles (By the Authors and About the Authors)	This page is a collection of articles written by or about the Java Security book. Many are hyperlinked to Web sites. Publications include Byte, JavaWorld, and C!Net. (You can sign up for notification about future articles.)
Lectures and talks promoting the Java Security book	This includes bookstore signings, on-line chats, radio, trade shows and academic lectures by Ed Felten and Gary McGraw.
Java(tm) and JavaSoft Products	JavaSoft's Documentation page. Includes information on getting Java specs.
JavaSoft FORUM on Java Security	A discussion of Java Security issued hoted by JavaSoft and including several prominent security researchers.
Java Security	Chapter 14 of "WWW Beyond the Basics" a Web book by Virginia Tech students. This web-based document by Vijay Sureshkumar offers a concise overview of some security issues and provides a quick introduction to the security model.
Security for Java Programmers: An Introduction	Jay Heiser's 2/97 article from the Java Developers Journal. Introductory.
Java Security Model: Java Protection Domains	A handout from JavaSoft which briefly explains the new security model.
Introduction To Capability Based Security	A Web-based tutorial from Electric Communities.
Object Signing CodeStock Notes	Netscape developer information about signing code (including Java). Also see Netscape Object Signing.
Secure Computing with Java: Now and The Future	A white paper from JavaSoft explaining Java Security. Looks suspiciously like our book in places. Hmm.
Java's security architecture	An overview of the JVM's security model and a look at its built-in safety features.
Security and the class loader architecture	A look at the role played by class loaders in the JVM's overall security model
Security and the class verifier	A look at the role played by the class verifier in the JVM's overall security model
Java security: How to install the security manager and customize your security policy	Learn about the security manager and the Java API, what remains unprotected by the security manager, and security beyond the JVM architecture
Code Signing for Java Applets	A home-grown article by Dan Grisom explaining how to sign Java code. I wrote a couple of articles for developer.com about code signing too. See the Java Security Articles page.
Javaworld's Java Security Books list	An exhaustive list of Java security books (including etherbooks and non-existent titles). We'll give you one guess which one we think is best!
Signing Applets for Internet Explorer and Netscape Navigator	An article by Joseph Bowbeer from June 97 (JDK 1.1 days).
Directions in Java Security: The JDC Interviews JavaSoft Security Guru Li Gong	Cheese, but interesting cheese. You'll have to register as a Java Developer to see this interview.
Building a bigger sandbox	A superficial look at the new code signing model.
Package java.security	The java.security package API summary for JDK 1.2.
Security in JDK 1.2	Sun's on-line tutorial stepping through JDK 1.2 security. The party line.
Trust Based Security for Java	Microsoft's view on Trust-Based security in Java. Pointers to code signing HOWTOs related to Authenticode.
Netscape Object Signing Establishing Trust for Downloaded Software	Netscape's Object Signing model page. All three major vendors have slightly different approaches (though all are based on stack inspection).
The trick to using Java networking applets behind firewalls	A JavaWorld Java tip addressing the firewall problem.
Java 2 security model white paper	Sun's perspective on the new model.
The Evolution of Java Security from IBM	An IBM whitepaper explaining how Java has evolved from JDK 1.0.2 to JDK 1.2 (now called Java 2). The API explanation is dated.