Java Security: It’s Feeling a Little Flashy

| Analysis

Java security updates have been common news recently with both Apple and Oracle rolling out patches for serious flaws -- so much so that Java is beginning to feel like the new Flash.

Java's feeling more like FlashJava's feeling more like Flash

Apple released a new security update for Jave SE 6 earlier this week, and Oracle followed suit with a patch for Java SE 7. These updates followed Apple remotely disabling Java SE 7 because of a major security flaw in January, Oracle releasing a patch, Apple disabling Java SE 7 again, another Oracle patch coming out, and finally Apple's most recent update for Java SE 6.

The cat-and-mouse nature of security issues and patches is looking more and more like the ongoing fight Adobe battles as it tries to keep Flash safe for its users. Apple distanced itself from Flash some time ago, and has been doing the same with Java now, too.

Apple stopped shipping Java as a standard part of the OS X installation, and last year began pushing users to Oracle's Mac Java builds instead of its own. That in and of itself can cause confusion because Apple still supports its Java SE 6 implementation while Oracle is supporting Java SE 7, which means there are parallel versions of the platform available for the Mac that are being supported independently by different companies.

The ongoing fight to patch Java security issues has a very Flash feel to it, and even has users saying it's time to uninstall Java from your Mac -- which is a sentement that also has a very Flash feel. OS X also has a built-in mechanism that disables Java if it hasn't run in a month, so many Mac users may not be using the Java platform at all.

While Apple is clearly pushing its Mac users away from Java, don't expect it to go away any time soon. Even though you may not need it in your Web browser, unlike Javascript with is similar in name only, it's a critical part in some apps including Adobe's Creative Suite.

Apps like Photoshop, InDesign and Illustrator, for example, rely on Java for some interface elements and other features, and the CrashPlan backup system relies on Java for its interface, too. While Adobe won't be dropping its reliance on Java in the foreseable future, CrashPlan has told The Mac Observer it is working on a native Mac app to be released in the coming months.

Java is now like Flash in that it isn't included as part of the default OS X installation, Apple is pushing customers away from the platform, and it seems to be suffering from ongoing big security headaches. Combine Apple's push with those headaches, and the writing is on the wall: Apple is Flashing Java.

[Some image elements courtesy Shutterstock]

Sign Up for the Newsletter

Join the TMO Express Daily Newsletter to get the latest Mac headlines in your e-mail every weekday.

3 Comments

DrShakagee

There was a point in time where JavaScript was the one with massive security issues (or at least that’s what the news said, remember EVIL COOKIES). That was one of the major selling point of Flash.

brett_x

My opinion: Java is much more important than Flash, and Apple really doesn’t want it to go away. 
Java is what enables a lot of software to be cross platform (e.g. Adobe Suites mentioned above). Without it, look for more “Windows only” implementations in the future.  The justification for developing a Mac native solution is hard to make in the first place. Without this common basis for at least some of the code, it makes it even harder.
That said, they surely don’t want security vulnerabilities on their platform. I’ve been wrong before, but I think they’ll stick to disabling it when critical flaws are found, and Oracle will get better at releasing patches so they don’t get the negative press the flaws bring.

macrawth

nice content….

Log-in to comment