Java SE Security Documentation

User Guides

Java SE 7 Security Documentation

Extensive information on the security features of the Java SE 7 release, including reference guides, API specifications (javadocs), tool documentation, tutorials, and more.

Java Applet & Web Start - Code Signing

Starting with Java SE 7 Update 21 in April 2013 all Java Applets and Web Start Applications are Required to be Signed with a Trusted Certificate. Learn More

Java SE 6 Security Documentation

Extensive information on the security features of the Java SE 6 release, including reference guides, API specifications (javadocs), tool documentation, and tutorials.

Java 2 SDK, v 5.0 Security Documentation

Extensive information on the security features of the Java 2 SDK, v 5.0 release, including reference guides, API specifications (javadocs), tool documentation, and tutorials.

Java 2 SDK, v 1.4 Security Documentation

Extensive information on the security features of the Java 2 SDK, v 1.4 release, including reference guides, API specifications (javadocs), tool documentation, and tutorials.

Security Code Guidelines

Some guidelines to allow you to take full advantage of the security provided by the Java platform.

JAR Guide

A short introduction to using the JAR tool to create JAR files. This describes the applet tag syntax for associating an applet with a .JAR file, instead of a .class file.

JAR File Specification

JAR file is a file format based on the popular ZIP file format and is used for aggregating many files into one.

Java Rich Internet Applications Development and Deployment

Applets and Java Web Start applications are now referred to as rich internet applications (RIAs) - Java programs that take advantage of the Internet. A pointer to the RIA guide. The guide includes information on design, development, deployment and resources.

Deploying signed applets in Java Plug-in

This Java plug-in guide describes features released prior to the Java SE 6 update 10 release. A pointer to the Java Plug-in developer guide. The guide includes a chapter on security and the signed applet support in Java Plug-in, which allows users to grant (signed) applets all permissions based on their authenticated signers, without having to configure and deploy any policy or keystore configuration files.

Security Tool Documentation

keytool: Solaris/Linux and Microsoft Windows: keytool is a utility for creating and managing keystores and certificates.
jarsigner: Solaris/Linux and Microsoft Windows: jarsigner is a utility for generating and verifying JAR signatures.
Policy Tool: Solaris/Linux and Microsoft Windows: Policy tool is a GUI tool for creating and managing policy files.
kinit: Microsoft Windows: kinit is a utility for obtaining Kerberos v5 tickets.
klist: Microsoft Windows: klist is a utility to list entries in a Kerberos v5 credential cache and key tab.
ktab: Microsoft Windows: ktab is a utility to help the user manage entries in the key table