| Home : June 01 2013 Computer News : Java security improvements not a panacea for Oracle |
|
Java security improvements not a panacea for Oracle |
June 01, 2013
Oracle's plans to bolster Java security were welcomed by security experts who nevertheless wanted to see more done to lockdown one of hackers' favorite targets.
The Java steward released on Thursday its priorities for the application platform. The changes on tap included automated checking of the validity of signed certificates, stopping unsigned applets from being executed by default and adding centralized management options. The latter included whitelisting of applets in enterprise environments.
The upcoming changes, as well as other security efforts outlined in Oracle's Software Security Assurance Blog, were categorized on Friday by security experts as necessary improvements that were far from definitive.
"No one step Oracle is taking stands out as a silver bullet that will cure Java security issues," said Paul Henry, a security and forensic analyst with Lumension. "That being said, each with one exception is a step in the right direction."
To read this article in full or to leave a comment, please click here
Link: http://www.pcworld.com/article/2040523/java-security-improvements-not-a-panacea-for-oracle.html#tk.rss_all
|
|
|
|
|
