Other SecurityManager implementations available?
Posted
by mhaller
on Stack Overflow
See other posts from Stack Overflow
or by mhaller
Published on 2010-03-23T22:14:47Z
Indexed on
2010/03/23
22:33 UTC
Read the original article
Hit count: 269
Is there any other implementation (e.g. in an OSS project) of a Java SecurityManager available which has more features than the one in the JDK?
I'm looking for features like
- configurable at runtime
- policies updateable at runtime, read from other data sources than a
security.policy
file - Thread-aware, e.g. different policies per Thread
- Higher-level policies, e.g. "Disable network functions, but allow JDBC traffic"
- Common predefined policies, e.g. "Allow read-access to usual system properties like
file.encoding
orline.separator
, but disallow read-access to user.home" - Monitoring and audit trace logging, e.g. "Log all file access, log all network access going NOT to knownhost.example.org"
- Blocking jobs "requesting" a permission until an administrator grants permission, letting the thread/job continue
- ...
I'm pretty sure that application servers (at least the commercial ones) have their own SecurityManager
implementation or at least their own policy configuration. I'm wondering if there is any free project with similar requirements.
© Stack Overflow or respective owner