Security and Signed Applets

The Java Security API is designed to allow developers to incorporate both low-level and high-level security into their Java applications. The first release of Java Security in JDK 1.1 contains a subset of this functionality, including an API for digital signatures and message digests. In addition, JDK 1.1 contains abstract interfaces for key management, certificate management, and access control. API to support specific certificate formats and richer functionality in the area of access control will follow in subsequent JDK releases.
JDK 1.1 provides a tool that can sign Java ARchive (JAR) files. The JDK Applet Viewer allows any downloaded applets in JAR files signed (using the tool) by a trusted entity to run with the same full rights as local applications. That is, such applets are not subject to the "sandbox" restrictions of the original Java security model. Later releases will provide more sophisticated security policies, including greater granularity in the allowable trust levels.
Where to Find Documentation

Mary Dageforde, a guest author for the tutorial, has written about 1.1's new security API. You can find her work in the Java Security trail.

If the information you need isn't in one of her two lessons, check out the information at the JDK 1.1 website: Security and Signed Applets .

Also, you can read a preview of the Security Enhancements planned for the next major release of the JDK.

What's New in 1.1?