Javas Security Dilemma: Old, Vulnerable Versions Wont Go Away InfoWorld (01/21/14) Krill, Paul Cybersecurity experts say that organizations are putting themselves at risk of cyberattacks by continuing to use older, non-supported versions of Java that contain vulnerabilities that may never be publicly patched. Many organizations that still use older versions of Java, such as Java 6, are doing so because of application dependencies. Cisco says organizations often use both Java 6 and Java 7 because different apps sometimes use different versions of the Java Runtime Environment to run code. Cisco researcher Levi Gundert says while some organizations running apps that rely on older versions of Java may have concluded that they cannot upgrade them, they should take another look at their upgrade processes to see if an upgrade is feasible now. Forrester Research analyst Jeffrey Hammond, meanwhile, says organizations should consider one of three options: upgrading to Java 7 and budgeting for appropriate app testing and rollouts, paying Oracle for support for Java 6 and obtaining updates from MyOracle Support, or moving from Java to open source platforms that do not use end-of-life policies to force users to upgrade.
Posted on: Thu, 23 Jan 2014 06:20:13 +0000
Trending Topics
Recently Viewed Topics
© 2015