From: "J.D. Fagan" <jfagan@2bridge.com>
To: <crock@communities.com>
Subject: Capability Security, E and Java 1.2
Date: Mon, 20 Jul 1998 17:24:54 -0700
You make the following claims about Java security problems at
(http://www.communities.com/company/papers/security/eforjava.html).:
* No reference to capability-supplying static members
* No nonfinal static variables, no mutable final statics
* Integrity checking of class references
I'm assuming this is referencing Java 1.1 vs. Java 1.2. Have you studied
Java's 1.2 security model? What are your comments on this upgraded security
framework?
J.D. Fagan
2Bridge Software