ibm-information-center/dist/eclipse/plugins/i5OS.ic.rzaha_5.4.0.1/security.htm

96 lines
6.3 KiB
HTML
Raw Normal View History

2024-04-02 14:02:31 +00:00
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE html
PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html lang="en-us" xml:lang="en-us">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="security" content="public" />
<meta name="Robots" content="index,follow" />
<meta http-equiv="PICS-Label" content='(PICS-1.1 "http://www.icra.org/ratingsv02.html" l gen true r (cz 1 lz 1 nz 1 oz 1 vz 1) "http://www.rsac.org/ratingsv01.html" l gen true r (n 0 s 0 v 0 l 0) "http://www.classify.org/safesurf/" l gen true r (SS~~000 1))' />
<meta name="DC.Type" content="concept" />
<meta name="DC.Title" content="Java security" />
<meta name="abstract" content="This topic provides details on adopted authority and explains how you can use SSL to make socket streams secure in your Java application." />
<meta name="description" content="This topic provides details on adopted authority and explains how you can use SSL to make socket streams secure in your Java application." />
<meta name="DC.Relation" scheme="URI" content="whatitis.htm" />
<meta name="DC.Relation" scheme="URI" content="securmod.htm" />
<meta name="DC.Relation" scheme="URI" content="rzahajce.htm" />
<meta name="DC.Relation" scheme="URI" content="rzahajssemain.htm" />
<meta name="DC.Relation" scheme="URI" content="jaasbase.htm" />
<meta name="DC.Relation" scheme="URI" content="rzahajgssover.htm" />
<meta name="copyright" content="(C) Copyright IBM Corporation 2006" />
<meta name="DC.Rights.Owner" content="(C) Copyright IBM Corporation 2006" />
<meta name="DC.Format" content="XHTML" />
<meta name="DC.Identifier" content="security" />
<meta name="DC.Language" content="en-us" />
<!-- All rights reserved. Licensed Materials Property of IBM -->
<!-- US Government Users Restricted Rights -->
<!-- Use, duplication or disclosure restricted by -->
<!-- GSA ADP Schedule Contract with IBM Corp. -->
<link rel="stylesheet" type="text/css" href="./ibmdita.css" />
<link rel="stylesheet" type="text/css" href="./ic.css" />
<title>Java security</title>
</head>
<body id="security"><a name="security"><!-- --></a>
<!-- Java sync-link --><script language="Javascript" src="../rzahg/synch.js" type="text/javascript"></script>
<h1 class="topictitle1">Java security</h1>
<div><p>This topic provides details on adopted authority and explains how
you can use SSL to make socket streams secure in your Java™ application.</p>
<p>Java applications
are subject to the same security restrictions as any other program on an iSeries™ server.
To run a Java program on an iSeries server, you must have authority
to the class file in the integrated file system. Once the program starts,
it runs under the user's authority.</p>
<p>You can use adopted authority to access objects with the authority of the
user that is running the program, and the program owner's authority. Adopted
authority temporarily gives a user authority to objects that they would not
have originally had authority to access. See the <a href="../cl/crtjvapgm.htm" target="_blank">Create Java Program (CRTJVAPGM)</a> command
information for details on the two new adopted authority parameters, which
are USRPRF and USEADPAUT.</p>
<p>The majority of the Java programs that run on an iSeries server
are applications, not applets, so the "sandbox" security model does not restrict
them.</p>
<div class="note"><span class="notetitle">Note:</span> <img src="./delta.gif" alt="Start of change" />For J2SDK, version 1.4 and subsequent releases, JAAS, JCE,
JGSS, and JSSE are part of the base JDK and are not considered to be extensions.
For previous JDK versions, these security items are extensions.<img src="./deltaend.gif" alt="End of change" /></div>
</div>
<div>
<ul class="ullinks">
<li class="ulchildlink"><strong><a href="securmod.htm">Java security model</a></strong><br />
You can download Java applets from any system; thus, security
mechanisms exist within the Java virtual machine to protect against
malicious applets. The Java runtime system verifies the bytecodes
as the Java virtual machine loads them. This ensures that they
are valid bytecodes and that the code does not violate any of the restrictions
that the Java virtual machine places on Java applets.</li>
<li class="ulchildlink"><strong><a href="rzahajce.htm">Java Cryptography Extension</a></strong><br />
The Java Cryptography Extension (JCE) 1.2 is a standard
extension to the Java 2 Software Development Kit (J2SDK), Standard Edition.
The JCE implementation on an iSeries server is compatible with the implementation
of Sun Microsystems, Inc. This documentation covers the unique aspects of
the iSeries implementation.</li>
<li class="ulchildlink"><strong><a href="rzahajssemain.htm">Java Secure Socket Extension</a></strong><br />
The Java Secure Socket Extension (JSSE) is the Java implementation
of the Secure Sockets Layer (SSL) protocol. JSSE uses SSL and the Transport
Layer Security (TLS) protocol to enable clients and servers to conduct secure
communications over TCP/IP.</li>
<li class="ulchildlink"><strong><a href="jaasbase.htm">Java Authentication and Authorization Service</a></strong><br />
The Java Authentication and Authorization Service (JAAS)
is a standard extension to the Java 2 Software Development Kit (J2SDK),
Standard Edition. J2SDK provides access controls that are based
on where the code originated and who signed the code (code source-based access
controls). It lacks, however, the ability to enforce additional access controls
based on who runs the code. JAAS provides a framework that adds this support
to the Java 2 security model.</li>
<li class="ulchildlink"><strong><a href="rzahajgssover.htm">IBM Java Generic Security Service (JGSS)</a></strong><br />
The Java Generic Security Service (JGSS) provides a generic
interface for authentication and secure messaging. Under this interface you
can plug a variety of security mechanisms based on secret-key, public-key,
or other security technologies.</li>
</ul>
<div class="familylinks">
<div class="parentlink"><strong>Parent topic:</strong> <a href="whatitis.htm" title="Java compatibleIBM Developer Kit for Java is optimized for use in an iSeries server environment. It uses the compatibility of Java programming and user interfaces, so you can develop your own applications for the iSeries server.">IBM Developer Kit for Java</a></div>
</div>
</div>
</body>
</html>