Mobile Code

• Review

  • Code signing does not adequately protect users from malicious code. If a trusted site is compromised and the keys stolen, the user looses all assurance that the code is “safe”.
  • Code needs to have restrictions placed upon it by default, and only with the user permission should it be allowed to perform other actions.
  • Code should not automatically be executed in any circumstance, users should have the option of allowing or disallowing the code.

Previous slide

Next slide

Back to first slide

View graphic version