DBsign and the DoD Java JRE STIG

On March 27th, 2013, DoD issued the “Java Runtime Environment 6 STIG Version 1” and the “Java Runtime Environment 7 STIG Version 1” to restrict DoD users from running signed applets which were signed by code signing certificates that are not already trusted by the JRE.

 
This document explains signed applet security and the security vulnerabilities that are addressed by this STIG. It also explains how the STIG works and its impact on the use of signed applets such as the DBsign Universal Web Signer (UWS) in browser based web applications.
 
Download the document HERE.
General Topics