Symantec Scan Engine (SSE) and Symantec Protection Engine (SPE) Web console page shows a Java security warning which suggests blocking SSE/SPE applets with a future version of Java

book

Article ID: 158741

calendar_today

Updated On:

Products

Protection Engine for Cloud Services Scan Engine

Issue/Introduction

  • You are accessing the SSE/SPE web console page with Oracle Java 7 Update 25 and later (and below Oracle Java 7 Update 51) and notice the following Java Security warning dialogbox.

  • You are accessing SSE/SPE web console page with Oracle Java 7 Update 51 or later and the SSE/SPE applets are blocked.

Do you want to run this application?

An unsigned application from the location below is requesting permission to run.

Running unsigned applications like this will be blocked in a future release because it is potentially unsafe and a security risk.

 

Cause

  • Oracle Java 7 update 25 and later shows the security warning above because SSE / SPE applets are not code-signed from a trusted authority. 
  • Oracle Java 7 update 51 (January 2014) enhances authentication and authorization and any applets without the code signature from a trusted authority will be blocked. 

Resolution

This issue is resolved in version 7.0.3 and version 7.5.x and 8.x.

This issue is not going to be addressed for the following older versions.

  • Symantec Scan Engine 5.x.x (End of Support Life as of April 1, 2014)
  • Symantec Protection Engine 7.0.0, 7.0.1, 7.0.2.

NOTE: For SSE5.2.13 and the under, JRE 1.7 is not supported.

Reference: New security requirements for RIAs in 7u51 (January 2014)
https://blogs.oracle.com/java-platform-group/entry/new_security_requirements_for_rias

For the workaround, please see https://knowledge.broadcom.com/external/article/158876/after-upgrading-to-java-7-update-51-you.html.

 

Applies To

IMPORTANT: Java 7 is not supported for SSE5.2.13 and below.

  • Oracle Java 7 Update 25 and later shows the warning above
  • Oracle Java 7 Update 51 and later blocks the applets 
  • SSE5.2.14 and later
  • SPE7.0.0 and later