In what way could Java applets pose a security threat?
A.
Their transport can interrupt the secure distribution of World Wide Web pages over the Internet by removing
SSL and S-HTTP
B.
Java interpreters do not provide the ability to limit system access that an applet could have on a client
system.
C.
Executables from the Internet may attempt an intentional attack when they are downloaded on a client
system.
D.
Java does not check the bytecode at runtime or provide other safety mechanisms for program isolation from
the client system.
Explanation:
Programmers have figured out how to write applets that enable the code to access hard drives and resources
that are supposed to be protected by the Java security scheme. This code can be malicious in nature and
cause destruction and mayhem to the user and her system.
Incorrect Answers:
A: The transportation of an applet cannot remove SSL or S-HTTP.
B: When an applet is executed, the JVM will create a virtual machine, which provides an environment called a
sandbox. This virtual machine is an enclosed environment in which the applet carries out its activities.
D: The Java Virtual Machine (JVM) converts the bytecode to the machine code that the processor on that
particular system can understand.Conrad, Eric, Seth Misenar and Joshua Feldman, CISSP Study Guide, 2nd Edition, Syngress, Waltham, 2012,
p. 1155