Here's the problem: Java is not secure. Here is the solution: sandbox Java apps. Well, it really is not quite that simple, but our First Look this month generated in us one of those "ah ha!" moments when we saw what it was and how it worked. One of the major issues we face as security professionals is that application developers are usually tasked with application security and, as we all know, that often does not work as well as we'd like. Application security is difficult, and because new vulnerabilities appear regularly, it is very difficult to write truly secure code.
展开▼
