Other SecurityManager implementations available?

Posted by mhaller on Stack Overflow See other posts from Stack Overflow or by mhaller
Published on 2010-03-23T22:14:47Z Indexed on 2010/03/23 22:33 UTC
Read the original article Hit count: 269

Is there any other implementation (e.g. in an OSS project) of a Java SecurityManager available which has more features than the one in the JDK?

I'm looking for features like

  • configurable at runtime
  • policies updateable at runtime, read from other data sources than a security.policy file
  • Thread-aware, e.g. different policies per Thread
  • Higher-level policies, e.g. "Disable network functions, but allow JDBC traffic"
  • Common predefined policies, e.g. "Allow read-access to usual system properties like file.encoding or line.separator, but disallow read-access to user.home"
  • Monitoring and audit trace logging, e.g. "Log all file access, log all network access going NOT to knownhost.example.org"
  • Blocking jobs "requesting" a permission until an administrator grants permission, letting the thread/job continue
  • ...

I'm pretty sure that application servers (at least the commercial ones) have their own SecurityManager implementation or at least their own policy configuration. I'm wondering if there is any free project with similar requirements.

© Stack Overflow or respective owner

Related posts about java

Related posts about securitymanager