Thursday, June 6, 2013

Come On Oracle, Get Serious About Java Security


In reading a blog post on Oracle's handling of Java's security, I read:

"Whenever Oracle makes an acquisition, acquired product lines are required to conform to Oracle policies and procedures, including those comprising Oracle Software Security Assurance.  As a result, for example, the Java development organization had to adopt Oracle’s Security Fixing Policies, which among other things mandate that issues must be resolved in priority order and addressed within a certain period of time"

Oracle, please..... Are you REALLY implying that Sun Microsystems did not take care of Java's security?