New web browsers complaining about Java security

About ArtistScope DRM DRM Changes DRM Comparison DRM Demonstration DRM FAQs DRM Hosting Service DRM Pricing DRM Requirements DRM User Guide

About ASPS Web Reader ASPS Browser Comparison ASPS Changes ASPS Demo Site ASPS Download ASPS FAQs ASPS Kiosk Browser ASPS PDF Manager ASPS Pricing ASPS User-Guide ASPS Web Hosting ASPS WordPress Plugin

About CopySafe PDF CS-PDF Changes CS-PDF Command-line CS-PDF Downloads CS-PDF FAQs CS-PDF GUI Software CS-PDF Pricing CS-PDF Print Limit CS-PDF Reader

About CopySafe Web CS-Web Add-on: Joomla CS-Web Add-on: WordPress CS-Web Changes CS-Web Command-line CS-Web Converter CS-Web Demos Online CS-Web FAQs CS-Web Insert CS-Web Pricing CS-Web Server-side DLL CS-Web User Guide

ArtistScope CD Copy Protected Web Hosting Domain Name Registrations Hosted DRM Service Link Protect Scroll Image Secure Image Zoom Image

About ArtistScope About Copy Protection Affiliate Information ArtistScope eBook Store Book Cover Design Tool Contact Us Developer Information DRM Portal Log-in History News Purchase Software Solutions Support Forums Site Map White Papers

Copy protect web data and media using the most secure web browser.

Knowledgebase : Troubleshooting & Tips

New web browsers complaining about Java security

Author

Message

Prev Topic | Next Topic

Support
Admin Group

Posted: 15 March 2013 at 3:32pm \| IP Logged

This is actually more to do with lame web browsers. The security risk from Java these days is the browser itself because their makers don't know what they are doing. For example IE does not see java as a risk because it's not. But the current makers of Firefox and Chrome now require that Java applets be signed. For anyone using an application made before 2010 this can be a problem because applets were rarely code-signed and the reason is quite simple... it's not necessary because Java is not a risk by nature of its design. That has never changed but the new not-so-clever-experts not only require that the applet be signed, but also that it be signed using a current certificate.

Now this where things get ridiculous because nothing signed by an authorized certificate should ever expire. Sure the certificate may have expired and the developer probably renewed it already, but it was signed at the time using a valid certificate from a trusted authority. Nothing has changed. In fact the file itself cannot change because that would invalidate the code signing. So the only thing that is a threat is the not-so-clever-experts employed by the likes of Google who have little to no real experience. Why people at Firefox take any notice of Google "experts" is not so puzzling when one realizes that they too have lost the plot. For example, only an idiot with the attention span of less than 5 seconds would consider changing the "major" version number of an application every 1-2 months. Major version numbers (the first digit) are supposed to be reserved for major changes, ie: changes that are so dramatically different that they are no longer compatible with earlier resources. But now they increment them for minor updates. Why... is because they are trying to impress the simpletons that use them. Firefox is currently at version 19 and they would like you to think that their browser is more advanced than say IE version 10. But that's not true at all because Firefox and Chrome have incremented major version numbers from 4-19 in about as many months, yet there is very little difference between version 5 and 19 beyond fixing bugs introduced in version 4 by Google no-so-expert intervention.

There may also be other things afoot... a few years ago Microsoft tried to steal Java, got sued, paid our huge fines and retaliated by removing Java as a standard inclusion in Windows installations. Now users need to go out of their way to install Java, which by the way, is one of the corner stones of computing. But then not long ago Google also tried to steal Java and were very quickly put in their place. Since then Mozilla browsers have been trying to discredit Java in any way that they can. This of course is most childish, but what else can on expect from boy-kings?

How to fix Java security error reports

Although it is a gross inconvenience to every internet user and software developers alike, and because these no-so-expert browser makers have problems fixing their own errors, all we can do is maintain that our applets are regularly code-signed. The following link will provide the download to the currently signed version of security applet for both Copysafe Web and Secure Image:

http://www.artistscope.com/secure_image_protection_download. asp#codesign

For anyone using other Java applications purchased more than 12 months ago, perhaps you should ask the oh-so-clever experts at Google to pay some one to upgrade those apps, because that's the only way they can be code-signed.

Even after installing the latest code-signed applet, for every web site that uses an applet, users will still have click OK to annoying prompts about "Do you want to allow this Java application to run?" It doesn't really matter if it is code-signed because the not-so-clever ones are still venting their spleen.

If you wish to post a reply to this topic you must first login
If you are not already registered you must first register

Printable version

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot delete your posts in this forum
You cannot edit your posts in this forum
You cannot create polls in this forum
You cannot vote in polls in this forum

Guidance		Products	Services
Copy Protecting eBooks Copy Protecting Flash Copy Protecting Images Copy Protecting PDF Copy Protecting Video Copy Protecting Websites		ArtistScope DRM ArtistScope Site Protection System (ASPS) CopySafe PDF CopySafe Web Scroll Image Secure Image Pro Zoom Image	ArtistScope eBook Store ASPS Web Hosting Book Cover Design Tool Custom Development Domain Name Management DRM Validation Service Protected Web Hosting