Untrusted code is restricted(Web-based applets)

• Applets cannot make direct system calls

• Applets are forbidden to:

  • access the filesystem
  • open sockets (except back home)
  • interfere with other applets
  • spy on the local environment

• See Frank Yellin’s paper

  • Java Security Hotlist

Previous slide

Next slide

Back to first slide

View graphic version