Good point! The Web Application Servers use case also seems to have been
the impetus behind
JSR 121: Application Isolation API Specification
(https://jcp.org/en/jsr/detail?id=121). Mark, note the dates on this
spec. Specification started in 2001 and ended in 2006.
Security Explorations release
Hello,
partial quote as I want to add to a point:
Am Tue, 26 May 2015 16:19:59 -0400
schrieb Michael Maass :
> 3. Common security reasons to use the sandbox: (a) using a third
> party library that isn't fully trusted (convenience often trumps
> security) and (b) frameworks loading third party pl
I've been working on addressing similar issues as part of my PhD thesis
and have noted many of the same challenges, although I've taken a
different approach. Some points I can add from a recent but currently
unpublished study of actual usage of the Java sandbox (I can send a
draft to individual
Hello!
I am a security-conscious Java developer and am interested in using the
JVMs built-in security features to run code in separated and run-time
configured sandboxes. I'm writing to the list to explain some of the
issues I've come up against and am hoping to either elicit suggestions
or at lea