Archives
  Columns
  Features
  Print Archives
1994-1998
  Special
  BYTE Digest
  Michael Abrash's Graphics Programming Black Book
  101 Perl Articles
  About Us
  How to Access BYTE.com
  Write to BYTE.com
  Advertise with BYTE.com

Newsletter
Free E-mail Newsletter from BYTE.com
 
    
  HOME   ABOUT US   ARCHIVES   CONTACT US   ADVERTISE   REGISTER
Visit the home page Browse the four-year online archive Download platform-neutral CPU/FPU benchmarks Find information for advertisers, authors, vendors, subscribers Request free information on products written about or advertised in BYTE Submit a press release, or scan recent announcements Talk with BYTE's staff and readers about products and technologies

ArticlesBlock Hostile Java Applets

June 1997 / International What's New / Block Hostile Java Applets
Derek Jones

Are you sure the Java applet you just downloaded is what it says it is? Of course, there's no way to tell. But Finjan Software's SurfinShield, a Java applet firewall, gives you some protection against rogue applets.

It works by attacking an applet at two levels: its digital signature and the applet's use of system resources. Restricting applet usage to those that are digitally signed is effective as long as legitimate applets are always signed and you can quickly verify signatures. A signature does not guarantee integrity, but it guarantees that the applet has not been modified by a third party.

Because the majority of applets are still unsigned, SurfinShield maintains a signature database of suspect applets and does n ot allow the downloading of applets with registered signatures. But given the exploding rate of global applet creation, whether such a database can be effectively maintained is doubtfl.

In addition, SurfinShield monitors and displays a downloaded applet's use of system resources. It flags all applets that exceed predefined resource limits and doesn't allow such applets to run. But monitoring resource usage is effective only if the characteristics of rogue applets are sufficiently different from those of legitimate ones.

SurfinShield's Java security is not foolproof, but it adds a thin layer of security to your PC. A free 30-day evaluation license for SurfinShield is available from Finjan's Web site ( http://www.finjan.com ). In addition, a version for ActiveX controls should be available soon.

Where to Find 


SurfinShield......................$99

Finjan Software
South Netanya, Israel
Phone:    +972 9 865 9440
Fax:      +972 9 865 9441
Internet: 
http://www.finjan.com

Circle 977 on Inquiry Card.

HotBYTEs
 - information on products covered or advertised in BYTE

Shield Your Surfin'

screen_link (70 Kbytes)

Up to the International What's New section contentsGo to previous article: Go to next article: VisualAge Parts for C++SearchSend a comment on this articleSubscribe to BYTE or BYTE on CD-ROM  
Flexible C++
Matthew Wilson
My approach to software engineering is far more pragmatic than it is theoretical--and no language better exemplifies this than C++.

more...

BYTE Digest

BYTE Digest editors every month analyze and evaluate the best articles from Information Week, EE Times, Dr. Dobb's Journal, Network Computing, Sys Admin, and dozens of other CMP publications—bringing you critical news and information about wireless communication, computer security, software development, embedded systems, and more!

Find out more
BYTE.com Store

BYTE CD-ROM
NOW, on one CD-ROM, you can instantly access more than 8 years of BYTE.
 
The Best of BYTE Volume 1: Programming Languages
The Best of BYTE
Volume 1: Programming Languages
In this issue of Best of BYTE, we bring together some of the leading programming language designers and implementors...

Copyright © 2005 CMP Media LLC, Privacy Policy, Your California Privacy rights, Terms of Service
Site comments: webmaster@byte.com
SDMG Web Sites: BYTE.com, C/C++ Users Journal, Dr. Dobb's Journal, MSDN Magazine, New Architect, SD Expo, SD Magazine, Sys Admin, The Perl Journal, UnixReview.com, Windows Developer Network