Page History

The default {{SecurityManager}} checks whether the caller of a particular method has sufficient permissions to proceed with an action. An action is a level of access, for instance, the actions for {{java.io.FilePermission}} are "read", "write", "execute", and "delete" \[[Sun 2006|AA. Java References#SunBibliography#Sun 06]\]. The Permission Descriptions and Risks guide \[[Permissions 2008|AA. Java References#PermissionsBibliography#Permissions 08]\] enumerates the default permissions and the risks associated with granting these permissions to Java code. 

\[[API 2006|AA. JavaBibliography#API References#API 06]\] [Class SecurityManager|http://java.sun.com/javase/6/docs/api/java/lang/SecurityManager.html]
\[[Oaks 2001|AA. Java References#OaksBibliography#Oaks 01]\] Chapter 5: The Access Controller, "Permissions"
\[[Policy 2002|AA. JavaBibliography#Policy References#Policy 02]\]
\[[Sun 2006|AA. Java References#SunBibliography#Sun 06]\] [Permission Descriptions and Risks|http://java.sun.com/javase/6/docs/technotes/guides/security/permissions.html]
\[[MITRE 2007|AA. Java References#MITREBibliography#MITRE 07]\]  [CWE-732|http://cwe.mitre.org/data/definitions/732.html], "Incorrect Permission Assignment for Critical Resource"