SEPM 12.1 RU4 ships with a newer version of the Java Runtime Environment (JRE) in order to take advantage of the latest security updates, bug fixes, and other improvements. Starting with JRE 1.7 Update 25, signed Java applets and Java Web Start applications will have the signing certificate checked to ensure it has not been revoked.
In some cases (e.g., a managed network with limited or no internet access where the revocation services servers cannot be reached), this setting may cause applications to take longer to start.