Reputation: 20976
Java SE Security features to protect application data from the user
I've worked through Java SE Security features.
As far as I understood the whole idea of this standard feature is to protect the user from malicious software.
For both java applications on the web, for which SecurityManager is enabled by default and security policies restrict application access to user machine with ability for the user to grant additional permissions.
And local java application, for which SecurityManager is disabled by default with ability for the user to enable it for concrete application and apply security policy to the application.
Is Java SE SecurityManager applicable to protect sensitive application data from the user?
If yes what is high level scenario for the developer to achive this?
Upvotes: 0
Views: 70
Answers (2)
Reputation: 147164
If you're sending data to the users machine you are out of luck. There are no DRM features.
If you don't want users to access data, don't send the data to them. Keep it on your own servers and provide clients with a remote interface onto it.
Upvotes: 2
Reputation: 168845
Is Java SE SecurityManager applicable to protect sensitive application data from the user?
No. Whatever security Java provides is all for the user, not for 'protecting us/our code from the users'.
Upvotes: 1
Related Questions
- Prevent Java Application from performing malicious activities
- How to "hide" sensitive system properties like passwords set by Java applications?
- Custom Security mechanism in Java EE 6/7 application
- Java WebApp Security frameworks
- Data Access control in Java EE technologies
- Protecting objects with Security Manager
- Implement Spring Security in Java Swing application
- Security: Restrict internal access by third-party software
- Security - Stop people using my program without authorization
- Java EE security - application clients