SEI CERT Oracle Coding Standard for Java

Space shortcuts

Page tree

Versions Compared

Old Version 88

changes.mady.by.user Shannon Haas

Saved on

compared with

New Version 89

changes.mady.by.user Shannon Haas

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Consider, for example, signed Java applets. When a certificate is verified, on widely used platforms, the user is presented with a security dialog in which the option "Always trust the content from the publisher" is selected by default. The dialog primarily asks whether or not the signed code should be executed. Unfortunately, if the user confirms the dialog with the check box selected, the "Always trust..." setting overrides any future warning dialogs. An attacker can take advantage of this mechanism by exploiting vulnerable code signed by the trusted organization. In this case, the code will execute with the user's implied permission and can be freely exploited.

...

ENV00-EX1: An organization that has an internal PKI and uses code signing for internal development activities (such as facilitating code check-in and tracking developer activity) may sign unprivileged code. This code base should not be carried forward to the a production environment. The keys used for internal signing must be distinct from those used to sign externally available code.

...

<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="b533b5a7de946f4c-9e2b93da-4b5c4c5a-96a5a693-5178c98bef65456b1fac8702"><ac:plain-text-body><![CDATA[

[ISO/IEC TR 24772:2010

http://www.aitcnet.org/isai/]

Adherence to least privilege [XYN]

]]></ac:plain-text-body></ac:structured-macro>

...

<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="01a1079fcd809997-a40dd968-40dd4177-8e369ef5-08b0c048fd87ec433f0f06b4"><ac:plain-text-body><![CDATA[

[[Dormann 2008

AA. Bibliography#Dormann 08]]

 

]]></ac:plain-text-body></ac:structured-macro>

<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="97d782a4f4127137-786d1ba6-44384380-82579c90-271adb126ebffa8d1cb2c26f"><ac:plain-text-body><![CDATA[

[[McGraw 1999

AA. Bibliography#McGraw 99]]

Appendix C, Sign Only Privileged Code

]]></ac:plain-text-body></ac:structured-macro>

<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="43b6f598a6ba2ef9-87dd9b71-4524429f-91fb88df-faa179a208015d62fae36f4a"><ac:plain-text-body><![CDATA[

[[Schneier 2000

AA. Bibliography#Schneier 00]]

 

]]></ac:plain-text-body></ac:structured-macro>

...