Tour of security experts in the new Java 2 platform, Inside Java 2 Security will find an enthusiastic audience among advanced Java developers and system administrators. In addition, touching on the evolution of Java security from the days of limiting the JDK 1.0 sandbox to the sophisticated security features available in Java 2, including the part that presents the list of 11 security bugs found in earlier versions of Java. Because Java 2 security is now based policy, it should be managed by system administrators as part of corporate security. A chapter on Java 2 security presents the "big picture" and also classes that are used to implement policy-based security where developers can control access to the entire system like files, network resources, or runtime permissions on code. For advanced developers, further sections demonstrate how to create new permission classes and how to make JDK 1.1 security code migrate to Java 2. A part of the Java Cryptography Architecture (JCA) shows that Java 2 supports the latest encryption standards like SHA, DSA, RSA, and X.509 certificates.