Why Java Is Secure
Security is important because networks provide a potential avenue of attack to any computer hooked to them. Java’s security mechanisms help make Java suitable for networks because they establish a needed trust in the safety of network-mobile code.
Java is a programming language developed by Sun Microsystems. The language have many characteristics and among them portability, it can even run some programs that is loaded in the network. The security of Java has been tried and tested. There are small programs called ‘applets, that can be run on any internet browser while a user ‘surfs, the web. This fact may, invite different security problems and may even cause individuals (hackers) to attack your system.
Java’s security model is focused on protecting users from programs downloaded from sources across a network. Java security technology includes a large set of APIs, tools, and implementations of commonly used security algorithms, mechanisms, and protocols.
The Java security APIs span a wide range of areas, including cryptography, public key infrastructure, secure communication, authentication, and access control. Java security technology provides the developer with a comprehensive security framework for writing applications, and also provides the user or administrator with a set of tools to securely manage applications.
Java is considered more secure than other languages reasons such as :
1. The Java compiler catches more compile-time errors; other languages (like C++) will compile programs that produce unpredictable results.
2. Java does not allocate direct pointers to memory. This makes it impossible to accidentally reference memory that belongs to other programs or the kernel.
3. Java is said to be secure because, it is difficult to infect a java class file while compared to an executable file.
4. Java’s object oriented features, especially encapsulation with access protection enhances the security as the possible leakage of data or unauthorized access of data and usage of methods is not possible. Java virtual machine performs a check before interpreting it which reduces possibility of executing infected or corrupted files to some extent.
5. The main reason behind the java’s security is no readability i.e., contains byte code understandable to only JVM.
6. No virus will infect the byte code. Even if the virus entered into byte code the java virtual machine doesn’t understand it, so jvm keeps these instructions as it is. No executable code will be generated to this virus.
7. Java does not allocate direct pointers to memory. This makes it impossible to accidentally reference memory that belongs to other programs or the kernel.
8. The Java compiler catches more compile-time errors; other languages (like C++) will compile programs that produce unpredictable results.
Java’s security model is one of the language’s key architectural features that makes Java an appropriate technology for networked environments. Java’s security model is focused on protecting users from hostile programs downloaded from untrusted sources across a network. Java’s security model is focused on protecting users from programs downloaded from sources across a network.
Java is more secured programming language, because Java byte code for code virus cannot infect, it maintains number of secure checking points but in other language which will be in the form of exe format, virus can easily infect the exe, img, bat files so Java is more secured programming language.
The Java language is also designed to be a type-safe language. This means that the compile time type and the runtime type of variables are guaranteed to be compatible. This ensures that casts (operations that coerce a runtime type to a given compile time type) are checked at either compile time or runtime to make sure that they are valid. This prevents the forging of access to objects to get around access control.
Tags: java applet security, java is secure, java programming, java secure, java secure coding, java secure coding guidelines, java secure programming, java security, java security api, java security model, java security provider