RFR (12): 8191053: Provide a mechanism to make system's security manager immutable
Alan Bateman
Alan.Bateman at oracle.com
Mon Sep 17 09:09:48 UTC 2018
On 16/09/2018 20:37, Will Sargent wrote:
> > The security manager is legacy these days and I think we need to
> figure out a plan how to deprecate and eventually bury it.
>
> I don't know of any research or papers that explicitly say that
> SecurityManager is "legacy". I did some research into this a while
> ago, and while SecurityManager has some major flaws, I don't know of
> any other way to sandbox a Java application.
>
Have you looked into native containers? It's easy to find examples of
applications running in a docker container for example.
-Alan
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mail.openjdk.org/pipermail/security-dev/attachments/20180917/bbad0882/attachment.htm>
More information about the security-dev
mailing list