Java.com

Download Help

Help Resources


Get Java Installation Help Now

How do I control when an untrusted applet or application runs in my web browser?


This article applies to:
  • Java version(s): 7.0, 8.0

Java 7u10 introduces the ability to manage when and how untrusted Java applications (i.e. an application that is digitally signed by an unknown publisher, or a certificate that has not been issued by a trusted Certificate Authority) will run if they are included on a web page. Setting the security level within the Java Control Panel will determine whether
  1. You are prompted before an untrusted java application is run (MEDIUM or HIGH) or
  2. Untrusted Java applications will be blocked so they cannot run (VERY HIGH).
Starting with Java 7 Update 51, users will be able to configure the applications to run, that would normally be blocked by security checks. If the exception list feature is used, the option will be listed within the Java Control Panel.
See the Exception Site List FAQ for more info.

Find the Java Control Panel

» Windows
» Mac OS X


Setting the Security levels through the Java Control Panel
Enable Java
  1. In the Java Control Panel, click on the Security tab.
  2. Select the desired Security level.
  3. Click Apply.
  4. Click OK to save changes made to the Java Control Panel.
» More information see how to find the Java Control Panel?

Security levels in the Java Control Panel

Very High
This is the most restrictive security level setting. All the applications that are signed with a valid certificate and include the Permissions attribute in the manifest for the main JAR file are allowed to run with security prompts. All other applications are blocked.

High
This is the minimum recommended (and default) security level setting. Applications that are signed with a valid or expired certificate and include the Permissions attribute in the manifest for the main JAR file are allowed to run with security prompts. Applications are also allowed to run with security prompts when the revocation status of the certificate cannot be checked. All other applications are blocked.

Medium
Only unsigned applications that request all permissions are blocked. All other applications are allowed to run with security prompts. Selecting the Medium security level is not recommended and will make your computer more vulnerable should you run a malicious application.


You might also be interested in:

Select Language | About Java | Support | Developers
Privacy | Terms of Use | Trademarks | Disclaimer

Oracle