[7210] in Kerberos
Re: Kerberos and JAVA
daemon@ATHENA.MIT.EDU (Dennis Glatting)
Fri May 3 10:44:48 1996
From: Dennis Glatting <dennisg@plaintalk.bellevue.wa.us>
Date: Fri, 3 May 96 07:25:25 -0700
To: Sam Hartman <hartmans@MIT.EDU>
Cc: jwk3@acpub.duke.edu (Jay Kamm), kerberos@MIT.EDU
Reply-To: dennis.glatting@plaintalk.bellevue.wa.us
> I will assume your original proposal was for the
> purposes of conversation, and not a complete design; it
> leaves a few issues open. I will admit you could design
> reasonable hooks into Java or another system to allow
> remote downloading of trusted code.
>
Conversation, yes. It is one I am enjoying.
On one hand you have Java, a framework with the potential
of updating itself. No longer would one have to ship
crates of floppy disks when a bug is fixed or the product
enhanced. Automatic updates may even reduce a product's
support requirements -- famous last words :).
On another hand you have the average user, often
technically illiterate, but a huge audience.
Then you have real world things such as security is never
easy (the paper from Purdue on Java security is an eyebrow
raiser) and Java doesn't support unsigned integers
which complicates things like encryption and byte
encoding (read: ASN.1 :)).
-dpg
