...
Normally, execution of untrusted code causes loss of privileges; the Java security model rescinds priveleges privileges when a trusted method invokes an untrusted one. When trusted code calls untrusted code that attempts to perform some action requiring permissions withheld by the security policy, the Java security model disallows that action. However, privileged code may use a class that exists in an untrusted container and performs only unprivileged operations. If the attacker were to replace the class in the untrusted container with a malicious class, the trusted code might receive incorrect results and misbehave at the discretion of the malicious code.
...
[EMA 2011] | Optional Package Sealing |
Rule 7, If you must sign your code, put it all in one archive file | |
|
...