Someone recently forwarded me an interesting paper from the Annual Computer Security Applications Conference that compares the CLR security model with Java’s… I thought it was an interesting read so I thought I’d share it with you.


.NET Security: Lessons Learned and Missed from Java

Nathanael Paul         David Evans

University of Virginia

Department of Computer Science



PS – Because I am sitting in a security training class right now that Michael Howard, I thought I’d plug is blog on the issue What about .NET vs Java Security?