Java Reference
In-Depth Information
Securing
your applications
This chapter covers
Providing an overview of the Java security
architecture
■
Using OSGi Conditional Permission Admin to
manage permissions
■
Signing bundles and granting permissions
based on bundle signers
■
Creating custom permission conditions for
advanced use cases
■
OSG
i allows you to create loosely coupled, extensible applications. In such applica-
tions, bundles can come and go at any time, and it's easy to allow third parties to
extend your application in a well-defined way. But as with most things in life, there's
a downside to this flexibility: you open yourself (or your users) to security vulnera-
bilities because third-party bundles can't be completely trusted.
Luckily, the Java platform has built-in support for secure sandboxes, and the
OSG
i framework is designed to take advantage of them. Unfortunately, secure
438
